Publicité
Publicité
Commentaire : T. Rebentine
Format du document : text/plain
Prévisualisation
Rapport de ZHPDiag v1.33.04 par Nicolas Coolman, Update du 18/12/2012
Run by Bob at 24/08/2015 19:50:24
State : Problème connexion internet
UAC : Deactivate by program
---\\ Web Browser
MSIE: Internet Explorer v9.11.10240.16384
MFIE: Mozilla Firefox 40.0.2 v40.0.2 (Defaut)
---\\ Windows Product Information
~ Langage: Français
Windows 8 Home Premium Edition, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : 8HVX7
Windows License : OK
~ Windows Remaining Initializations Number : 1001
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8077 MB (69% free)
System Restore: Activé (Enable)
System drive C: has 224 GB (60%) free of 372 GB
---\\ Logged in mode
~ Computer Name: MICHEL
~ User Name: Bob
~ All Users Names: UpdatusUser, DefaultAccount, Bob, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Bob\AppData\Roaming\
~ %Desktop% : C:\Users\Bob\Desktop\
~ %Favorites% : C:\Users\Bob\Favorites\
~ %LocalAppData% : C:\Users\Bob\AppData\Local\
~ %StartMenu% : C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 224 Go of 372 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 160 Go of 343 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Hard drive, Flash drive, Thumb drive (Free 120 Go of 195 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.F1CBCB7FA6F3B309639AA2D4EF74469C] - (.Microsoft Corporation - Explorateur Windows.) (.11/08/2015 - 11:04:23.) -- C:\Windows\Explorer.exe [4532304]
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - (.Microsoft Corporation - Application de démarrage de Windows.) (.05/08/2015 - 17:11:34.) -- C:\Windows\System32\Wininit.exe [290312]
[MD5.FE32B8423711B4B4378C0BA3C3560ED4] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.05/08/2015 - 17:11:34.) -- C:\Windows\System32\wininet.dll [2741760]
[MD5.26EFEFD877A84EE9FBDE6DEE630892C9] - (.Microsoft Corporation - Application douverture de session Windows.) (.05/08/2015 - 17:11:34.) -- C:\Windows\System32\Winlogon.exe [578048]
[MD5.ECB1943967424DFB96E03F6A098434EF] - (.Microsoft Corporation - Bibliothèque de licences.) (.05/08/2015 - 17:11:34.) -- C:\Windows\System32\sppcomapi.dll [430592]
[MD5.6C12C7E01A4F64E0AA9C88AF66955CC9] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.10/07/2015 - 12:00:10.) -- C:\Windows\system32\Drivers\AFD.sys [577888]
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.10/07/2015 - 11:59:39.) -- C:\Windows\system32\Drivers\atapi.sys [28512]
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - (.Microsoft Corporation - CD-ROM File System Driver.) (.10/07/2015 - 12:00:14.) -- C:\Windows\system32\Drivers\Cdfs.sys [92672]
[MD5.CA160E02F35A61C6F5C681FB4669C519] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.10/07/2015 - 11:59:39.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.25435407D97419627F4B10653433BF2B] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.10/07/2015 - 11:59:57.) -- C:\Windows\system32\Drivers\DfsC.sys [138240]
[MD5.C277A49F8A8295840DEBC9240B75A282] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.10/07/2015 - 11:59:36.) -- C:\Windows\system32\Drivers\HDAudBus.sys [80896]
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - (.Microsoft Corporation - Pilote de port i8042.) (.10/07/2015 - 11:59:38.) -- C:\Windows\system32\Drivers\i8042prt.sys [114688]
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - (.Microsoft Corporation - IP Network Address Translator.) (.10/07/2015 - 11:59:53.) -- C:\Windows\system32\Drivers\IpNat.sys [143360]
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.10/07/2015 - 11:59:59.) -- C:\Windows\system32\Drivers\MRxSmb.sys [415232]
[MD5.F0D791348AD254360CC3C3E501CCB745] - (.Microsoft Corporation - MBT Transport driver.) (.10/07/2015 - 12:00:13.) -- C:\Windows\system32\Drivers\netBT.sys [273408]
[MD5.466EC5659C02ED53DBD47DC1BC2B8086] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.30/07/2015 - 07:03:30.) -- C:\Windows\system32\Drivers\ntfs.sys [2116448]
[MD5.38F1AE32339731F6E5A7281AE8042545] - (.Microsoft Corporation - Pilote de port parallèle.) (.10/07/2015 - 11:59:39.) -- C:\Windows\system32\Drivers\Parport.sys [96768]
[MD5.CA60F6C03611AF1710BC903ED9F566FB] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.10/07/2015 - 11:59:52.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [104960]
[MD5.A32AED8C644734B283A7C9D08D76064D] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.10/07/2015 - 17:28:17.) -- C:\Windows\system32\Drivers\rdpdr.sys [176128]
[MD5.28E1E63A1AC65E17B3194238FA2CF3BF] - (.Microsoft Corporation - TDI Translation Driver.) (.10/07/2015 - 12:00:10.) -- C:\Windows\system32\Drivers\tdx.sys [116576]
[MD5.823A237D871CD652C6BFD47BECB6810A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.10/07/2015 - 11:59:39.) -- C:\Windows\system32\Drivers\volsnap.sys [378720]
~ Scan Generic Processes in 00mn 02s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/31
~ Mes musiques (My Musics) : 4/45
~ Mes Favoris (My Favorites) : 1/8
~ Mes Documents (My Documents) : 2/3961
~ Mon Bureau (My Desktop) : 2/4990
~ Menu demarrer (Programs) : 1/39
~ Scan Hidden Files in 00mn 38s
---\\ Processus lancés
[MD5.B7BCA8A30CE13A283CDBDECEF5616C39] - (.ASUS - ACMON.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [107192] [PID.5968]
[MD5.FC040252FB2AA74545D8B17FE9CD4D78] - (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Bob\AppData\Local\Microsoft\OneDrive\OneDrive.exe [404064] [PID.6036]
[MD5.97202E9C0D86387888435470CCAF45BE] - (.ASUSTeK - ACEngSvr Module.) -- C:\Windows\SysWOW64\ACEngSvr.exe [192000] [PID.4528]
[MD5.749C9E51E6D5A5AC23D2B4B8B63CAFE9] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [377000] [PID.6484]
[MD5.505FA1C10A599256E177E90A78813DDB] - (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files (x86)\XnView\xnview.exe [5192176] [PID.4480]
[MD5.EA2542DA415B6B72A132ED89936D2093] - (...) -- C:\Program Files (x86)\Microsoft Office\Office\WINWORD.exe [5324560] [PID.7164]
[MD5.A3FBEC2CCD8F1AC7B61927C186A4BE1A] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [3793920] [PID.6656]
~ Scan Processes Running in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\fkfr7wgw.default-1400505168451\prefs.js
C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\fkfr7wgw.default-1400505168451\user.js
C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\rvxn0hte.Bob\prefs.js
C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\rvxn0hte.Bob\user.js
M0 - MFSP: prefs.js [Bob - fkfr7wgw.default-1400505168451] http://www.google.fr
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\fr-dicollecte@dictionaries.addons.mozilla.org] [] Dictionnaires français v5.3 (.Olivier R..)
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\youtubemp3podcaster@jeremy.d.gregorio.com] [] Youtube MP3 Podcaster v3.7.5 (.Jeremy Gregorio.)
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\{0b457cAA-602d-484a-8fe7-c1d894a011ba}] [] FireShot v0.98.75 (.Eugene G. Suslikov.)
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\{43c507fe-30de-47e0-8449-3fc7770c0634}] [] BlockNote v2.5.3.1-signed (.Carmine Chiarelli.)
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\{5384767E-00D9-40E9-B72F-9CC39D655D6F}] [] EPUBReader v1.5.0.6.1-signed (.Michael Volz.)
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20150708 (.WOT Services Oy.)
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}] [] Flash and Video Download v1.74 (.Vicente Amor.)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll
~ Scan Firefox Browser in 00mn 02s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (...) (No version) -- (.not file.)
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [ACMON] . (.ASUS - ACMON.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.)
O4 - HKCU\..\Run: [GUDelayStartup] . (.Glarysoft Ltd - Glary Utilities StartupManager.) -- C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Bob\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS InstantKey] . (.ASUS - Ikey_start.) -- C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdatePSTShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe
O4 - HKUS\S-1-5-21-320857880-1101057498-3739190395-1002-320857880-1101057498-3739190395-1001\..\Run: [GUDelayStartup] . (.Glarysoft Ltd - Glary Utilities StartupManager.) -- C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe
O4 - HKUS\S-1-5-21-320857880-1101057498-3739190395-1002-320857880-1101057498-3739190395-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKUS\S-1-5-21-320857880-1101057498-3739190395-1002-320857880-1101057498-3739190395-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Bob\AppData\Local\Microsoft\OneDrive\OneDrive.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\AD Sound Recorder.lnk . (.Adrosoft.) -- C:\Program Files (x86)\AD Sound Recorder\ADSRecorder.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Audacity.lnk . (.The Audacity Team.) -- C:\Program Files (x86)\Audacity\audacity.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\DVD Flick.lnk . (.Dennis "Exl" Meuwissen.) -- C:\Program Files (x86)\DVD Flick\dvdflick.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Easy Photo Tools.lnk . (...) -- C:\Program Files (x86)\EasyPhotoTools\EasyPhotoTools.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\empires2.exe - Raccourci.lnk . (.Microsoft Corporation.) -- C:\Users\Bob\Games\AgeofEmpires2Portable®\AgeofEmpires2Portable\empires2.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Free Sound Recorder.lnk . (...) -- C:\Program Files (x86)\Free Sound Recorder\FreeSoundRecorder.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Gentibus CD.lnk . (.Luc DI FELICE.) -- C:\Program Files (x86)\Gentibus CD\GentibusCD.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\HTML Editor.lnk . (.Microsoft.) -- C:\Program Files (x86)\Sheva Software\HTML Editor\Debug\HTML Editor.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\HTTrack Website Copier.lnk . (.HTTrack.) -- C:\Program Files (x86)\WinHTTrack\WinHTTrack.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\ma Livebox.lnk . (.Orange.) -- C:\Program Files (x86)\Orange\ma Livebox\maLivebox.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Media Convert Master.lnk . (...) -- C:\Program Files (x86)\Media Convert Master\MediaConvertMaster.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Mp3tag.lnk . (.Florian Heidenreich.) -- C:\Program Files (x86)\Mp3tag\Mp3tag.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\XnView.lnk . (.XnView, http://www.xnview.com.) -- C:\Program Files (x86)\XnView\xnview.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\AD Sound Recorder.lnk . (.Adrosoft.) -- C:\Program Files (x86)\AD Sound Recorder\ADSRecorder.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Audacity.lnk . (.The Audacity Team.) -- C:\Program Files (x86)\Audacity\audacity.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\DVD Flick.lnk . (.Dennis "Exl" Meuwissen.) -- C:\Program Files (x86)\DVD Flick\dvdflick.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Easy Photo Tools.lnk . (...) -- C:\Program Files (x86)\EasyPhotoTools\EasyPhotoTools.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\empires2.exe - Raccourci.lnk . (.Microsoft Corporation.) -- C:\Users\Bob\Games\AgeofEmpires2Portable®\AgeofEmpires2Portable\empires2.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Free Sound Recorder.lnk . (...) -- C:\Program Files (x86)\Free Sound Recorder\FreeSoundRecorder.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Gentibus CD.lnk . (.Luc DI FELICE.) -- C:\Program Files (x86)\Gentibus CD\GentibusCD.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\HTML Editor.lnk . (.Microsoft.) -- C:\Program Files (x86)\Sheva Software\HTML Editor\Debug\HTML Editor.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\HTTrack Website Copier.lnk . (.HTTrack.) -- C:\Program Files (x86)\WinHTTrack\WinHTTrack.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\ma Livebox.lnk . (.Orange.) -- C:\Program Files (x86)\Orange\ma Livebox\maLivebox.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Media Convert Master.lnk . (...) -- C:\Program Files (x86)\Media Convert Master\MediaConvertMaster.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Mp3tag.lnk . (.Florian Heidenreich.) -- C:\Program Files (x86)\Mp3tag\Mp3tag.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\XnView.lnk . (.XnView, http://www.xnview.com.) -- C:\Program Files (x86)\XnView\xnview.exe
~ Scan Global Startup in 00mn 10s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim daffectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur despace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur despace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{123f0656-4c1f-4d73-9f84-fee31cd86a53}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{75e7492d-97e2-400a-bf06-5f81977fdc45}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{123f0656-4c1f-4d73-9f84-fee31cd86a53}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{75e7492d-97e2-400a-bf06-5f81977fdc45}: DhcpNameServer = 192.168.1.1 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Photo Gallery Album Download Protocol Handl.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\NVIDIA~1\3DVISI~1\NVSTIN~1.dll (.not file.)
~ Scan AppInit DLL in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} . (.EldoS Corporation - CbFs Mount Notifier.) -- C:\Windows\system32\CbFsMntNtf3.dll
O21 - SSODL: EldosMountNotificator-cbfs5 - {407910AE-5100-4ACA-B41B-670ACA265E09} . (.EldoS Corporation - Mount Notifier.) -- C:\WINDOWS\system32\cbfsMntNtf5.dll
~ Scan SSODL in 00mn 00s
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) [64Bits] - {407910AE-5100-4ACA-B41B-670ACA265E09} - (.not file.)
~ Scan STS/SSO in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ASLDR Service (ASLDRService) . (.ASUSTek Computer Inc. - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) . (.ASUS - ASUS InstantOn Program.) - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS - GFNEXSrv.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CyberLink Product - 2012/11/03 23:48:01 (CLKMSVC10_38F51D56) . (.CyberLink - CyberLink KM Service.) - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
O23 - Service: Dedicarz Service (Dedicarz Service) . (.Pas de propriétaire - DedicarzService.) - C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe
O23 - Service: Elan Service (ETDService) . (.ELAN Microelectronics Corp. - Elan Service.) - C:\Program Files\Elantech\ETDService.exe
O23 - Service: Intel(R) HD Graphics Control Panel Servi (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service In (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation - Pas de description.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.5.) - C:\WINDOWS\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Orange update Core Service (Orange update Core Service) . (.Orange SA - Orange Upd@te.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O23 - Service: PST Service (PST Service) . (.Motorola - ForwardDemon.) - C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (.not file.)
~ Scan Services in 00mn 01s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize 5.job
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[MD5.545B2D9299AC744497BDA9C50D561B95] [APT] [ASUS Smart Gesture Launcher] (.AsusTek.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe
[MD5.545B2D9299AC744497BDA9C50D561B95] [APT] [ASUS Touchpad Launcher (x64)] (.AsusTek.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe
[MD5.1F014EA12ECB13C909DA9395E9CD3D18] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.C2168D98651841E2F6D7B08F3383A73C] [APT] [GlaryInitialize 5] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
[MD5.89B52ECB4DF86F66100D218C16025EF1] [APT] [GU5SkipUAC] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
[MD5.2780FE4E51298FB9A037231A6150ADEC] [APT] [maLivebox] (.Orange.) -- C:\Program Files (x86)\Orange\ma Livebox\maLivebox.exe
[MD5.00000000000000000000000000000000] [APT] [{47B1191E-63FE-46A8-AFCB-3B4EF2D2F790}] (...) -- E:\AOEInst.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{74730D1C-D83E-441A-8BB6-D22D8B6ACD16}] (...) -- F:\setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{897827CF-0B0A-4089-ADE2-F8845CA6D874}] (...) -- C:\Users\Bob\AppData\Roaming\mystartsearch\UninstallManager.exe (.not file.)
~ Scan Scheduled Task in 00mn 04s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (ATKWMIACPIIO) . (.ASUSTek Computer Inc. - ATK WMIACPI Utility.) - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: (cbfs3) . (.EldoS Corporation - Callback File System Driver.) - C:\Windows\system32\drivers\cbfs3.sys
O41 - Driver: (cbfs5) . (.EldoS Corporation - Callback File System Driver.) - C:\WINDOWS\system32\drivers\cbfs5.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\filecrypt.sys (FileCrypt) . (.Microsoft Corporation - Windows sandboxing and encryption filter.) - C:\Windows\System32\drivers\filecrypt.sys
O41 - Driver: C:\Windows\System32\drivers\gpuenergydrv.sys (GpuEnergyDrv) . (.Microsoft Corporation - GPU Energy Kernel Driver.) - C:\Windows\System32\drivers\gpuenergydrv.sys
O41 - Driver: (GUBootStartup) . (.Glarysoft Ltd - The driver for the Startup Manager tool.) - C:\WINDOWS\system32\drivers\GUBootStartup.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbios.sys (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\drivers\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\drivers\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (sysrdb) . (.Promosoft Software Limited - Secure Folders.) - C:\Windows\system32\drivers\sysrdb.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\drivers\vwififlt.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: 7-Zip 9.30 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0930-000001000000}
O42 - Logiciel: AD Sound Recorder 5.4.5 - (.Adrosoft.) [HKLM][64Bits] -- AD Sound Recorder_is1
O42 - Logiciel: ASUS Instant Connect - (.ASUS.) [HKLM][64Bits] -- {89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}
O42 - Logiciel: ASUS Instant Key - (.ASUS.) [HKLM][64Bits] -- {D97A1B80-131F-4692-9543-E652956D8B99}
O42 - Logiciel: ASUS InstantOn - (.ASUS.) [HKLM][64Bits] -- {749F674B-2674-47E8-879C-5626A06B2A91}
O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM][64Bits] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158}
O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM][64Bits] -- {9B6239BF-4E85-4590-8D72-51E30DB1A9AA}
O42 - Logiciel: ASUS Smart Gesture - (.ASUS.) [HKLM][64Bits] -- {4D3286A6-F6AB-498A-82A4-E4F040529F3D}
O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D}
O42 - Logiciel: ASUS Tutor - (.ASUS.) [HKLM][64Bits] -- {58172D66-2F69-4215-9AEC-ED8196023736}
O42 - Logiciel: ASUS USB Charger Plus - (.ASUS.) [HKLM][64Bits] -- {A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}
O42 - Logiciel: ASUS Video Magic - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: ASUS Video Magic - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: ASUS WebStorage Sync Agent - (.ASUS Cloud Corporation.) [HKLM][64Bits] -- ASUS WebStorage
O42 - Logiciel: ASUSDVD - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: ASUSDVD - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {34927EBC-98D4-4D53-98BE-510DF5999F50}
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100}
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Photoshop 7.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop 7.0
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Age of Empires III - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{70F8B183-99EB-4304-BA35-080E2DFFD2A3}
O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM][64Bits] -- AmUStor
O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM][64Bits] -- Asus Vibe2.0
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: Audacity 2.0.5 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1
O42 - Logiciel: Bitcasa version 1.1.6.18 - (.Bitcasa Inc..) [HKLM][64Bits] -- {EDA09459-AD7D-4434-BA0C-647F6703EA12}_is1
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CD-LabelPrint - (.Pas de propriétaire.) [HKLM][64Bits] -- MediaNavigation.CDLabelPrint
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: CDex - Open Source Digital Audio CD Extractor - (.Georgy Berdyshev.) [HKLM][64Bits] -- CDex
O42 - Logiciel: Canon Easy-PhotoPrint EX - (.Pas de propriétaire.) [HKLM][64Bits] -- Easy-PhotoPrint EX
O42 - Logiciel: Canon Easy-PhotoPrint Pro - (.Pas de propriétaire.) [HKLM][64Bits] -- Easy-PhotoPrint Pro
O42 - Logiciel: Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data - (.Pas de propriétaire.) [HKLM][64Bits] -- Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data
O42 - Logiciel: Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data - (.Pas de propriétaire.) [HKLM][64Bits] -- Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data
O42 - Logiciel: Canon MG6100 series MP Drivers - (.Pas de propriétaire.) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6100_series
O42 - Logiciel: Canon MP Navigator EX 4.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- MP Navigator EX 4.0
O42 - Logiciel: Canon My Printer - (.Pas de propriétaire.) [HKLM][64Bits] -- CanonMyPrinter
O42 - Logiciel: Canon Solution Menu EX - (.Pas de propriétaire.) [HKLM][64Bits] -- CanonSolutionMenuEX
O42 - Logiciel: ConvertHelper 2.2 - (.DownloadHelper.) [HKLM][64Bits] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1
O42 - Logiciel: ConvertHelper 3.0 - (.DownloadHelper.) [HKLM][64Bits] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1
O42 - Logiciel: CyberLink MediaEspresso 6.5 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink MediaEspresso 6.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DVD Flick 1.3.0.7 - (.Dennis Meuwissen.) [HKLM][64Bits] -- DVD Flick_is1
O42 - Logiciel: ELAN Touchpad 15.8.4.3_X64_WHQL - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: EasyPhotoTools 2.2.0.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- {B1C43EB9-F687-42B9-84F8-E88F41F0BE0E}_is1
O42 - Logiciel: Enregistrement utilisateur de Canon MG6100 series - (.Pas de propriétaire.) [HKLM][64Bits] -- Enregistrement utilisateur de Canon MG6100 series
O42 - Logiciel: Free Sound Recorder v9.7.1 - (.Copyright(C) 2005-2014 FreeSoundRecorder Technologies, Inc..) [HKLM][64Bits] -- Free Sound Recorder_is1
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B}
O42 - Logiciel: Gentibus CD 1.51 - (.Luc DI FELICE.) [HKLM][64Bits] -- Gentibus CD_is1
O42 - Logiciel: Glary Utilities 5.16 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities 5
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology - (.Motorola Solutions, Inc.) [HKLM][64Bits] -- {7854AA22-A2F0-4F29-A2E9-D0C5A2B685E7}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel(R) WiDi - (.Intel Corporation.) [HKLM][64Bits] -- {EDBA2433-0910-4C72-8C5B-8FEDAE3EF18E}
O42 - Logiciel: Intel® PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM][64Bits] -- {D61F48DA-627B-404E-9315-32A651B18B64}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}
O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79}
O42 - Logiciel: LAME v3.99.3 (for Windows) - (.Pas de propriétaire.) [HKLM][64Bits] -- LAME_is1
O42 - Logiciel: Logiciel Intel® PROSet/Wireless - (.Intel Corporation.) [HKLM][64Bits] -- {c9967fbd-e3c3-4ed0-992a-5b33260f2944}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Media Convert Master 8.1.1.15 - (.Pas de propriétaire.) [HKLM][64Bits] -- Media Convert Master_is1
O42 - Logiciel: MediaMonkey 4.1 - (.Ventis Media Inc..) [HKLM][64Bits] -- MediaMonkey_is1
O42 - Logiciel: Microsoft Age of Empires Gold - (.Pas de propriétaire.) [HKLM][64Bits] -- Age of Empires Gold 1.0
O42 - Logiciel: Microsoft Age of Empires II - (.Pas de propriétaire.) [HKLM][64Bits] -- Age of Empires 2.0
O42 - Logiciel: Microsoft Age of Empires II : The Conquerors Expansion - (.Pas de propriétaire.) [HKLM][64Bits] -- Age of Empires II: The Conquerors Expansion 1.0
O42 - Logiciel: Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_ - (.Microsoft Corporation.) [HKLM][64Bits] -- {E9F0BCD8-6BD5-1ED7-EDA3-9FCF2A478AA1}
O42 - Logiciel: Microsoft Excel 97 - (.Pas de propriétaire.) [HKLM][64Bits] -- Excel
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}
O42 - Logiciel: Microsoft Office - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-0070-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM][64Bits] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D8E6291-B0D5-35EC-8441-6616F567A0F7}
O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
O42 - Logiciel: Microsoft Word 97 - (.Pas de propriétaire.) [HKLM][64Bits] -- Word8.0
O42 - Logiciel: Microsoft Works 6.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {75DEB69B-4B6C-11D4-B0CE-00AA00BCC218}
O42 - Logiciel: MotoHelper MergeModules - (.Motorola.) [HKLM][64Bits] -- {6F3D2F66-F050-45E3-BEB1-6523FE6D6690}
O42 - Logiciel: Motorola Device Manager - (.Motorola Mobility.) [HKLM][64Bits] -- {28DB8373-C1BB-444F-A427-A55585A12ED7}
O42 - Logiciel: Motorola Device Software Update - (.Motorola Mobility.) [HKLM][64Bits] -- {894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}
O42 - Logiciel: Motorola Mobile Drivers Installation 6.3.0 - (.Motorola Mobility LLC.) [HKLM][64Bits] -- {759E6A2F-1F01-45EF-A0C4-22F1B56CB975}
O42 - Logiciel: Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {21764A96-6748-4B83-89E7-7A5063BF156C}
O42 - Logiciel: Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {DD67BE4B-7E62-4215-AFA3-F123A800A389}
O42 - Logiciel: Mozilla Firefox 40.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 40.0.2 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mp3tag v2.39 - (.Florian Heidenreich.) [HKLM][64Bits] -- Mp3tag
O42 - Logiciel: NVIDIA HD Audio Driver 1.3.18.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}
O42 - Logiciel: NVIDIA PhysX System Software 9.12.0613 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA Pilote graphique 331.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: OVTScanner_Vista64 - (.OVT.) [HKLM][64Bits] -- {AE09704D-9051-4C25-B940-77F889F0C93F}
O42 - Logiciel: Orange update - (.Orange.) [HKLM][64Bits] -- OrangeUpdateManager
O42 - Logiciel: Package de pilotes Windows - ASUS (ATP) Mouse (06/17/2015 1.0.0.262) - (.ASUS.) [HKLM][64Bits] -- 14588A15B66655338DBCC021FFA81E31DC281859
O42 - Logiciel: Package de pilotes Windows - ASUS (ATP) Mouse (10/29/2012 1.0.0.148) - (.ASUS.) [HKLM][64Bits] -- C01F56FBD9B141017E63E2A1A141E59934D4DC67
O42 - Logiciel: Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {3751BF9B-5F23-4976-AA62-1BF4D791DCFE}
O42 - Logiciel: Photo Gallery - (.Microsoft Corporation.) [HKLM][64Bits] -- {07AAB66E-4718-422D-9218-4AFB3C922A71}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054}
O42 - Logiciel: Simple MP3 Tag Editor version 1.3 - (.Pas de propriétaire.) [HKLM][64Bits] -- Simple MP3 Tag Editor_is1
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: WinFF 1.5.3 (Codename EMMA) - (.WinFF.org.) [HKLM][64Bits] -- WinFF_is1
O42 - Logiciel: WinHTTrack Website Copier 3.47-27 (x64) - (.HTTrack.) [HKLM][64Bits] -- WinHTTrack Website Copier_is1
O42 - Logiciel: WinHTTrack Website Copier 3.47-27 - (.HTTrack.) [HKLM][64Bits] -- WinHTTrack Website Copier_is1
O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {B99F248C-B4B3-4D61-9FFC-AE59A1F13723}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {41C61308-6CFD-4D54-AB6A-7136ED08A18E}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {659CB81C-B54E-4DF1-B618-F35777393A54}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM][64Bits] -- {25058321-C33E-496B-8915-6FD64D362CAF}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {91EA0E43-82A0-4DE0-A46C-C7FCC4D989E6}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {B775C26B-EAA8-4A11-ACBF-76E52DF6B805}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {98029AF9-D2BD-439A-8ED7-AA60E232A49D}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {E703613B-BDAB-433E-A66A-DE0263E3D35D}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM][64Bits] -- {CDC1AB00-01FF-4FC7-816A-16C67F0923C0}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM][64Bits] -- {D1893000-EA77-493C-8DDD-E262436E959B}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {00F9DB8C-65D7-4D47-AB5F-F698EE38580D}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {33B992ED-B59B-4E25-9F3F-CF2D79BBA914}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {04BE4035-3C8E-4B48-BFB8-1655849C0C8B}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {714E162E-CD4F-4F1B-8302-7F5179409C25}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {E21F3367-B1D2-4FFE-B8C2-6E46E0663560}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {020C6D65-955A-4F76-882A-EC320CAF0103}
O42 - Logiciel: XnView 2.22 - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnView_is1
O42 - Logiciel: calibre - (.Kovid Goyal.) [HKLM][64Bits] -- {FEFD4E74-85EE-4BA6-AD02-E0F99BC3F51E}
O42 - Logiciel: ma Livebox - (.Orange.) [HKLM][64Bits] -- ma Livebox
---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\ASUS]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Adobe]
[HKCU\Software\Adrosoft]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Borland]
[HKCU\Software\BugSplat]
[HKCU\Software\CDDB]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\CanonBJ]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DivXNetworks]
[HKCU\Software\ECAREME]
[HKCU\Software\EasyPhotoTools]
[HKCU\Software\Firaxis]
[HKCU\Software\Florian Heidenreich]
[HKCU\Software\FreeCDRIP]
[HKCU\Software\Freemake]
[HKCU\Software\Glarysoft]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\Ironhide Game Studio]
[HKCU\Software\JEDI-VCL]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lake]
[HKCU\Software\Leadertech]
[HKCU\Software\Macromedia]
[HKCU\Software\MarineCat]
[HKCU\Software\MediaMonkey]
[HKCU\Software\MediaNavigation]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Novell]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Polipo]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Screenshoter]
[HKCU\Software\Sysinternals]
[HKCU\Software\T.Aragon]
[HKCU\Software\TeleCharger]
[HKCU\Software\The Fullbright Company]
[HKCU\Software\Trolltech]
[HKCU\Software\Unity]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VOS]
[HKCU\Software\Valve]
[HKCU\Software\Waves Audio]
[HKCU\Software\WinHTTrack Website Copier]
[HKCU\Software\Winamp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\bitcasa]
[HKCU\Software\geissplugin]
[HKLM\Software\7-Zip]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Agere]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Bitcasa]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dell]
[HKLM\Software\Dolby]
[HKLM\Software\ECAREME]
[HKLM\Software\EldoS]
[HKLM\Software\GEAR Software]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\LSI]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\Motorola Mobility]
[HKLM\Software\Motorola]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NCH Swift Sound]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Partner]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\VsMntNtf]
[HKLM\Software\Waves Audio]
[HKLM\Software\WidCommUpdate]
[HKLM\Software\WinHTTrack Website Copier]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ASIO]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\AsLdr]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Canneverbe Limited]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\DownloadHelper]
[HKLM\Software\Wow6432Node\ECAREME]
[HKLM\Software\Wow6432Node\FlashIntegro]
[HKLM\Software\Wow6432Node\Florian Heidenreich]
[HKLM\Software\Wow6432Node\Freemake]
[HKLM\Software\Wow6432Node\GlarySoft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Lame For Audacity]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\Motorola Mobility]
[HKLM\Software\Wow6432Node\Motorola]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Oracle]
[HKLM\Software\Wow6432Node\Orange]
[HKLM\Software\Wow6432Node\PocketSoft]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\T.Aragon]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WinHTTrack Website Copier]
[HKLM\Software\Wow6432Node\WinPcap]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\XnView]
[HKLM\Software\Wow6432Node\calibre]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 16/12/2013 - 19:59:43 - [3,384] ----D C:\Program Files (x86)\AD Sound Recorder
O43 - CFD: 07/06/2015 - 22:00:29 - [318,740] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 04/11/2012 - 01:39:23 - [0,131] ----D C:\Program Files (x86)\AmIcoSingLun
O43 - CFD: 05/08/2015 - 17:28:31 - [296,393] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 07/08/2014 - 21:42:29 - [45,851] ----D C:\Program Files (x86)\Audacity
O43 - CFD: 06/02/2013 - 15:56:32 - [0] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 24/10/2013 - 21:26:45 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 05/04/2014 - 09:06:53 - [143,539] ----D C:\Program Files (x86)\Calibre2
O43 - CFD: 03/02/2013 - 14:42:30 - [389,937] ----D C:\Program Files (x86)\Canon
O43 - CFD: 22/08/2014 - 09:07:06 - [13,497] ----D C:\Program Files (x86)\CDBurnerXP
O43 - CFD: 05/01/2014 - 17:33:20 - [10,213] ----D C:\Program Files (x86)\CDex
O43 - CFD: 21/11/2013 - 21:59:48 - [0] ----D C:\Program Files (x86)\Cisco
O43 - CFD: 09/08/2015 - 17:38:23 - [340,011] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 26/02/2013 - 10:12:50 - [29,417] ----D C:\Program Files (x86)\ConvertHelper
O43 - CFD: 04/11/2012 - 01:48:21 - [954,429] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 20/06/2014 - 17:02:10 - [6,264] ----D C:\Program Files (x86)\Domination
O43 - CFD: 29/09/2014 - 12:17:32 - [42,823] ----D C:\Program Files (x86)\DVD Flick
O43 - CFD: 01/09/2013 - 12:17:26 - [30,561] ----D C:\Program Files (x86)\EasyPhotoTools
O43 - CFD: 04/12/2013 - 21:01:15 - [15,080] ----D C:\Program Files (x86)\Free Sound Recorder
O43 - CFD: 09/08/2015 - 17:38:08 - [0] ----D C:\Program Files (x86)\Freemake
O43 - CFD: 13/11/2013 - 16:30:08 - [3,375] ----D C:\Program Files (x86)\Gentibus CD
O43 - CFD: 24/08/2015 - 14:20:57 - [37,731] ----D C:\Program Files (x86)\Glary Utilities 5
O43 - CFD: 28/09/2014 - 12:10:59 - [0] ----D C:\Program Files (x86)\Glarysoft
O43 - CFD: 14/07/2014 - 11:58:30 - [0] ----D C:\Program Files (x86)\Google
O43 - CFD: 07/08/2014 - 21:50:20 - [107,959] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 05/08/2015 - 17:28:34 - [228,953] ----D C:\Program Files (x86)\Intel
O43 - CFD: 06/08/2015 - 10:04:06 - [2,066] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 24/01/2015 - 10:59:45 - [135,789] ----D C:\Program Files (x86)\Java
O43 - CFD: 10/02/2013 - 22:56:15 - [1,540] ----D C:\Program Files (x86)\Lame For Audacity
O43 - CFD: 25/07/2015 - 07:51:16 - [53,427] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 02/03/2014 - 17:35:52 - [23,776] ----D C:\Program Files (x86)\Media Convert Master
O43 - CFD: 25/12/2014 - 16:02:11 - [51,327] ----D C:\Program Files (x86)\MediaMonkey
O43 - CFD: 17/09/2013 - 17:10:30 - [-1592,861] ----D C:\Program Files (x86)\Microsoft Games
O43 - CFD: 22/07/2013 - 17:18:56 - [8,929] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 03/02/2013 - 15:08:14 - [46,380] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 28/09/2013 - 20:22:55 - [5,397] ----D C:\Program Files (x86)\Microsoft SkyDrive
O43 - CFD: 28/09/2013 - 20:28:50 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 31/12/2012 - 22:42:46 - [23,644] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 10/07/2015 - 13:04:22 - [0,023] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 13/06/2014 - 08:48:33 - [0,194] ----D C:\Program Files (x86)\Motorola
O43 - CFD: 13/06/2014 - 08:48:38 - [8,128] ----D C:\Program Files (x86)\Motorola Mobility
O43 - CFD: 24/08/2015 - 11:02:20 - [85,324] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 24/08/2015 - 11:02:20 - [0,260] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 28/03/2013 - 15:45:48 - [1,084] ----D C:\Program Files (x86)\MP3Gain
O43 - CFD: 25/12/2014 - 16:18:50 - [5,498] ----D C:\Program Files (x86)\Mp3tag
O43 - CFD: 05/08/2015 - 18:05:19 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 13/06/2014 - 08:48:19 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 05/08/2015 - 17:28:36 - [114,413] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 07/05/2015 - 21:02:34 - [166,182] ----D C:\Program Files (x86)\Orange
O43 - CFD: 30/05/2013 - 14:40:42 - [0,000] ----D C:\Program Files (x86)\OVT
O43 - CFD: 04/11/2012 - 01:36:07 - [3,774] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 05/08/2015 - 18:05:20 - [36,669] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 13/01/2014 - 09:59:22 - [1,926] ----D C:\Program Files (x86)\Sheva Software
O43 - CFD: 04/01/2013 - 22:10:18 - [1,605] ----D C:\Program Files (x86)\Simple MP3 Tag Editor
O43 - CFD: 04/11/2012 - 01:36:23 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 16/02/2013 - 18:39:03 - [119,033] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 27/12/2012 - 13:59:46 - [18,256] ----D C:\Program Files (x86)\Winamp
O43 - CFD: 10/07/2015 - 18:23:55 - [1,380] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 24/06/2014 - 23:48:01 - [144,318] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 05/08/2015 - 17:28:36 - [5,685] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 10/07/2015 - 18:23:55 - [3,188] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 10/07/2015 - 13:04:26 - [0,218] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 10/07/2015 - 13:04:22 - [7,222] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 10/07/2015 - 18:23:55 - [5,230] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 10/07/2015 - 13:04:26 - [0,218] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 10/07/2015 - 13:04:22 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 10/07/2015 - 13:04:22 - [2,172] -S--D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 05/04/2014 - 21:30:25 - [53,696] ----D C:\Program Files (x86)\WinFF
O43 - CFD: 11/01/2014 - 11:21:46 - [11,524] ----D C:\Program Files (x86)\WinHTTrack
O43 - CFD: 28/06/2014 - 18:00:39 - [16,796] ----D C:\Program Files (x86)\XnView
O43 - CFD: 24/08/2015 - 19:51:17 - [10,021] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 02/03/2014 - 17:11:40 - [0,002] ----D C:\Program Files (x86)\ZHPFix
O43 - CFD: 07/06/2015 - 22:00:31 - [56,231] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 16/05/2015 - 09:05:19 - [45,079] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 06/02/2013 - 15:56:32 - [0] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 25/06/2014 - 12:07:55 - [7,618] ----D C:\Program Files (x86)\Common Files\FlashIntegro
O43 - CFD: 29/10/2013 - 20:12:18 - [6,917] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 05/08/2015 - 17:28:32 - [115,156] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 24/01/2015 - 11:00:33 - [2,052] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 05/08/2015 - 17:28:32 - [91,784] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 12/06/2014 - 23:53:46 - [0,008] ----D C:\Program Files (x86)\Common Files\Motorola Shared
O43 - CFD: 27/09/2013 - 16:30:44 - [0,675] ----D C:\Program Files (x86)\Common Files\MSSoap
O43 - CFD: 04/11/2012 - 01:27:57 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 27/12/2012 - 13:59:28 - [4,559] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 10/07/2015 - 13:04:26 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 12/06/2014 - 08:19:27 - [0,518] ----D C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 05/08/2015 - 17:28:33 - [9,227] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 28/09/2013 - 20:20:55 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 07/06/2015 - 22:00:02 - [195,360] ----D C:\ProgramData\Adobe
O43 - CFD: 17/09/2013 - 17:27:34 - [0,000] ----D C:\ProgramData\Age of Empires 3
O43 - CFD: 23/06/2014 - 21:13:12 - [2,509] ----D C:\ProgramData\AmUStor
O43 - CFD: 03/05/2015 - 14:57:29 - [2,558] ----D C:\ProgramData\Apple
O43 - CFD: 03/05/2015 - 14:39:51 - [0] ----D C:\ProgramData\Apple Computer
O43 - CFD: 10/07/2015 - 14:21:38 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 09/03/2015 - 23:14:37 - [0,004] ----D C:\ProgramData\ASUS
O43 - CFD: 24/08/2015 - 11:07:12 - [0,003] ----D C:\ProgramData\ASUS Smart Gesture
O43 - CFD: 23/06/2014 - 21:13:12 - [0,002] ----D C:\ProgramData\ASUS WebStorage
O43 - CFD: 17/08/2012 - 02:52:28 - [0,012] ----D C:\ProgramData\ASUSLogos
O43 - CFD: 23/06/2014 - 21:13:12 - [0,767] ----D C:\ProgramData\ASUSVibe
O43 - CFD: 06/02/2013 - 15:54:41 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 20/06/2014 - 11:19:37 - [1,475] R-H-D C:\ProgramData\Bureau
O43 - CFD: 20/06/2014 - 09:43:25 - [0] ----D C:\ProgramData\BVRP Software
O43 - CFD: 01/09/2013 - 12:50:16 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 23/06/2014 - 20:58:42 - [21,208] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 03/02/2013 - 14:45:53 - [0] --H-D C:\ProgramData\CanonEPP
O43 - CFD: 23/06/2014 - 21:13:12 - [0,000] --H-D C:\ProgramData\CanonIJEGV
O43 - CFD: 03/02/2013 - 14:45:53 - [0] --H-D C:\ProgramData\CanonIJEPPEX2
O43 - CFD: 03/02/2013 - 14:42:32 - [0,003] ----D C:\ProgramData\CanonIJMSetup
O43 - CFD: 23/06/2014 - 21:13:12 - [0,002] --H-D C:\ProgramData\CanonIJScan
O43 - CFD: 03/02/2013 - 14:40:45 - [0,065] ----D C:\ProgramData\CanonIJWSpt
O43 - CFD: 23/06/2014 - 21:13:25 - [4,688] ----D C:\ProgramData\ChangeFolderView
O43 - CFD: 10/07/2015 - 13:04:22 - [0] ----D C:\ProgramData\Comms
O43 - CFD: 23/06/2014 - 21:13:12 - [0,168] ----D C:\ProgramData\CyberLink
O43 - CFD: 10/07/2015 - 14:21:38 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 10/07/2015 - 14:21:38 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 03/05/2015 - 14:56:46 - [0,007] ----D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 23/06/2014 - 21:13:12 - [0,585] ----D C:\ProgramData\FolderView
O43 - CFD: 09/08/2015 - 17:38:10 - [0] ----D C:\ProgramData\Freemake
O43 - CFD: 28/09/2014 - 12:10:47 - [0] ----D C:\ProgramData\GlarySoft
O43 - CFD: 05/08/2015 - 17:28:39 - [0,185] ----D C:\ProgramData\Intel
O43 - CFD: 23/06/2014 - 20:58:45 - [0,076] ----D C:\ProgramData\Intel.sav
O43 - CFD: 24/06/2014 - 22:34:38 - [147,406] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 25/12/2014 - 16:02:04 - [0,558] ----D C:\ProgramData\MediaMonkey
O43 - CFD: 20/06/2014 - 11:19:37 - [0,322] R---D C:\ProgramData\Menu Démarrer
O43 - CFD: 05/08/2015 - 17:28:49 - [-1543,144] -S--D C:\ProgramData\Microsoft
O43 - CFD: 28/09/2013 - 20:22:45 - [0] ----D C:\ProgramData\Microsoft OneDrive
O43 - CFD: 20/06/2014 - 11:19:37 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 25/12/2012 - 21:11:43 - [0,028] ----D C:\ProgramData\Mozilla
O43 - CFD: 05/08/2015 - 17:28:49 - [89,291] ----D C:\ProgramData\NVIDIA
O43 - CFD: 05/08/2015 - 17:28:49 - [4,144] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 24/01/2015 - 10:59:47 - [67,709] ----D C:\ProgramData\Oracle
O43 - CFD: 19/06/2014 - 11:39:05 - [3,027] ----D C:\ProgramData\Orange
O43 - CFD: 23/06/2014 - 21:13:16 - [0,002] ----D C:\ProgramData\P4G
O43 - CFD: 07/01/2014 - 13:35:27 - [101,103] ----D C:\ProgramData\Package Cache
O43 - CFD: 05/08/2015 - 17:28:50 - [0,041] ----D C:\ProgramData\PRICache
O43 - CFD: 10/07/2015 - 18:28:36 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 04/11/2012 - 01:37:40 - [0] ----D C:\ProgramData\Roaming
O43 - CFD: 19/05/2015 - 21:15:09 - [0,143] ----D C:\ProgramData\RogueKiller
O43 - CFD: 09/08/2015 - 21:44:03 - [50,996] ----D C:\ProgramData\SetupTPDriver
O43 - CFD: 12/06/2014 - 13:47:09 - [0] ----D C:\ProgramData\SketchUp
O43 - CFD: 10/07/2015 - 13:04:22 - [0] ----D C:\ProgramData\SoftwareDistribution
O43 - CFD: 10/07/2015 - 14:21:38 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 30/12/2012 - 17:39:00 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 14/02/2014 - 21:04:16 - [0,838] ---AD C:\ProgramData\Temp
O43 - CFD: 10/07/2015 - 14:21:38 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 01/07/2013 - 11:53:41 - [0,049] ----D C:\ProgramData\TinyWall
O43 - CFD: 25/12/2014 - 16:15:16 - [0,008] ----D C:\ProgramData\TuneUpMedia
O43 - CFD: 04/11/2012 - 02:07:33 - [0,000] ----D C:\ProgramData\USBChargerPlus
O43 - CFD: 10/07/2015 - 14:22:45 - [0,004] ----D C:\ProgramData\USOPrivate
O43 - CFD: 10/07/2015 - 14:22:45 - [1,918] ----D C:\ProgramData\USOShared
O43 - CFD: 20/01/2015 - 14:16:19 - [3,646] ----D C:\ProgramData\{28D5D3C0-9147-4bb7-B2D0-453118720FE3}
O43 - CFD: 16/12/2013 - 19:59:42 - [0] ----D C:\Users\Bob\AppData\Roaming\AD Sound Recorder
O43 - CFD: 12/06/2015 - 21:16:58 - [36,749] ----D C:\Users\Bob\AppData\Roaming\Adobe
O43 - CFD: 03/05/2015 - 14:43:02 - [0,183] ----D C:\Users\Bob\AppData\Roaming\Apple Computer
O43 - CFD: 23/02/2013 - 18:18:28 - [0,003] ----D C:\Users\Bob\AppData\Roaming\ASUS
O43 - CFD: 24/12/2012 - 02:33:59 - [0] ----D C:\Users\Bob\AppData\Roaming\ASUS WebStorage
O43 - CFD: 09/08/2015 - 17:46:38 - [0,005] ----D C:\Users\Bob\AppData\Roaming\Audacity
O43 - CFD: 06/02/2013 - 15:54:36 - [0,069] ----D C:\Users\Bob\AppData\Roaming\AVS4YOU
O43 - CFD: 22/08/2014 - 23:26:40 - [24,889] ----D C:\Users\Bob\AppData\Roaming\Bitcasa
O43 - CFD: 08/08/2013 - 09:00:44 - [7,087] ----D C:\Users\Bob\AppData\Roaming\Box
O43 - CFD: 05/04/2014 - 09:09:25 - [0,338] ----D C:\Users\Bob\AppData\Roaming\calibre
O43 - CFD: 01/09/2013 - 12:50:16 - [0,002] ----D C:\Users\Bob\AppData\Roaming\Canneverbe Limited
O43 - CFD: 29/04/2013 - 16:21:16 - [0,017] ----D C:\Users\Bob\AppData\Roaming\Canon
O43 - CFD: 22/08/2014 - 09:12:45 - [12,651] ----D C:\Users\Bob\AppData\Roaming\com.bitcasa.Bitcasa
O43 - CFD: 24/06/2014 - 21:45:19 - [0,555] ----D C:\Users\Bob\AppData\Roaming\CyberLink
O43 - CFD: 15/06/2014 - 16:16:41 - [6,873] ----D C:\Users\Bob\AppData\Roaming\DarkSoulsII
O43 - CFD: 03/08/2014 - 08:51:24 - [0,010] ----D C:\Users\Bob\AppData\Roaming\DiskDefrag
O43 - CFD: 12/06/2015 - 12:08:58 - [0,004] ----D C:\Users\Bob\AppData\Roaming\DVD Flick
O43 - CFD: 08/10/2013 - 22:57:53 - [0,000] ----D C:\Users\Bob\AppData\Roaming\dvdcss
O43 - CFD: 15/08/2013 - 16:59:26 - [0] ----D C:\Users\Bob\AppData\Roaming\FireShot
O43 - CFD: 25/10/2013 - 09:11:04 - [0,009] ----D C:\Users\Bob\AppData\Roaming\fr.orange.assistancelivebox
O43 - CFD: 04/12/2013 - 21:01:18 - [0,001] ----D C:\Users\Bob\AppData\Roaming\Free Sound Recorder
O43 - CFD: 05/01/2014 - 17:26:49 - [0,000] ----D C:\Users\Bob\AppData\Roaming\FreeCDRipper
O43 - CFD: 05/10/2014 - 14:12:35 - [0,174] ----D C:\Users\Bob\AppData\Roaming\GlarySoft
O43 - CFD: 20/06/2014 - 11:23:30 - [0] ----D C:\Users\Bob\AppData\Roaming\Identities
O43 - CFD: 24/12/2012 - 02:30:07 - [0,002] ----D C:\Users\Bob\AppData\Roaming\Intel
O43 - CFD: 30/12/2013 - 17:38:04 - [0,039] ----D C:\Users\Bob\AppData\Roaming\Leadertech
O43 - CFD: 09/04/2015 - 18:08:53 - [0,041] ----D C:\Users\Bob\AppData\Roaming\Logishrd
O43 - CFD: 09/04/2015 - 18:08:38 - [0] ----D C:\Users\Bob\AppData\Roaming\Logitech
O43 - CFD: 25/12/2012 - 01:56:47 - [0,163] ----D C:\Users\Bob\AppData\Roaming\Macromedia
O43 - CFD: 09/08/2015 - 16:33:36 - [0,355] ----D C:\Users\Bob\AppData\Roaming\MediaMonkey
O43 - CFD: 05/08/2015 - 17:43:12 - [18,535] -S--D C:\Users\Bob\AppData\Roaming\Microsoft
O43 - CFD: 13/06/2014 - 08:47:25 - [0,000] ----D C:\Users\Bob\AppData\Roaming\Motorola
O43 - CFD: 13/06/2014 - 08:48:44 - [0,000] ----D C:\Users\Bob\AppData\Roaming\Motorola Mobility
O43 - CFD: 19/06/2014 - 11:54:52 - [215,209] ----D C:\Users\Bob\AppData\Roaming\Mozilla
O43 - CFD: 01/04/2014 - 19:49:44 - [0,055] ----D C:\Users\Bob\AppData\Roaming\Mp3tag
O43 - CFD: 12/06/2014 - 10:45:04 - [0,020] ----D C:\Users\Bob\AppData\Roaming\NVIDIA
O43 - CFD: 25/12/2012 - 21:45:47 - [12,376] ----D C:\Users\Bob\AppData\Roaming\OpenOffice.org
O43 - CFD: 24/09/2013 - 17:18:38 - [0,001] ----D C:\Users\Bob\AppData\Roaming\Python-Eggs
O43 - CFD: 09/08/2015 - 17:35:53 - [0] ----D C:\Users\Bob\AppData\Roaming\RPEng
O43 - CFD: 12/06/2014 - 13:48:04 - [2,130] ----D C:\Users\Bob\AppData\Roaming\SketchUp
O43 - CFD: 02/01/2013 - 11:36:42 - [0,008] ----D C:\Users\Bob\AppData\Roaming\Template
O43 - CFD: 01/07/2013 - 11:53:42 - [0,001] ----D C:\Users\Bob\AppData\Roaming\TinyWall
O43 - CFD: 25/12/2014 - 16:16:20 - [0] ----D C:\Users\Bob\AppData\Roaming\TuneUpMedia
O43 - CFD: 24/06/2014 - 22:08:19 - [0,006] ----D C:\Users\Bob\AppData\Roaming\VideoEditor
O43 - CFD: 23/08/2015 - 18:12:31 - [4,589] ----D C:\Users\Bob\AppData\Roaming\vlc
O43 - CFD: 27/12/2012 - 19:04:56 - [0] ----D C:\Users\Bob\AppData\Roaming\Vso
O43 - CFD: 12/12/2014 - 22:54:32 - [0,576] ----D C:\Users\Bob\AppData\Roaming\Winamp
O43 - CFD: 05/04/2014 - 21:37:48 - [0,036] ----D C:\Users\Bob\AppData\Roaming\WinFF
O43 - CFD: 20/01/2015 - 12:30:55 - [0] ----D C:\Users\Bob\AppData\Roaming\WinSesame
O43 - CFD: 15/02/2014 - 18:17:24 - [0] ----D C:\Users\Bob\AppData\Roaming\Xilisoft
O43 - CFD: 24/08/2015 - 14:47:30 - [173,964] ----D C:\Users\Bob\AppData\Roaming\XnView
O43 - CFD: 12/06/2014 - 10:47:13 - [0,003] ----D C:\Users\Bob\AppData\Local\4A Games
O43 - CFD: 28/06/2015 - 07:47:05 - [19,670] ----D C:\Users\Bob\AppData\Local\Adobe
O43 - CFD: 23/09/2014 - 18:31:56 - [0] ----D C:\Users\Bob\AppData\Local\Advanced File Lock
O43 - CFD: 03/05/2015 - 14:38:47 - [0] ----D C:\Users\Bob\AppData\Local\Apple
O43 - CFD: 03/05/2015 - 14:42:36 - [2,082] ----D C:\Users\Bob\AppData\Local\Apple Computer
O43 - CFD: 05/08/2015 - 17:26:11 - [0] ----D C:\Users\Bob\AppData\Local\Application Data
O43 - CFD: 29/12/2012 - 11:59:26 - [0] ----D C:\Users\Bob\AppData\Local\Apps
O43 - CFD: 19/06/2014 - 11:39:06 - [1,311] ----D C:\Users\Bob\AppData\Local\ASUS
O43 - CFD: 26/07/2013 - 09:33:16 - [0,065] ----D C:\Users\Bob\AppData\Local\Box
O43 - CFD: 26/07/2013 - 09:33:13 - [0,268] ----D C:\Users\Bob\AppData\Local\Box Edit
O43 - CFD: 05/04/2014 - 09:07:41 - [0] ----D C:\Users\Bob\AppData\Local\calibre-cache
O43 - CFD: 15/07/2015 - 18:22:30 - [0] ----D C:\Users\Bob\AppData\Local\CEF
O43 - CFD: 05/08/2015 - 18:01:18 - [18,195] ----D C:\Users\Bob\AppData\Local\Comms
O43 - CFD: 29/07/2015 - 18:40:22 - [91,758] ----D C:\Users\Bob\AppData\Local\CrashDumps
O43 - CFD: 22/09/2013 - 19:57:46 - [0,321] ----D C:\Users\Bob\AppData\Local\Cyberlink
O43 - CFD: 19/07/2015 - 17:39:22 - [0,558] ----D C:\Users\Bob\AppData\Local\Diagnostics
O43 - CFD: 31/03/2013 - 20:56:31 - [0,010] ----D C:\Users\Bob\AppData\Local\DOSBox
O43 - CFD: 30/12/2013 - 17:39:50 - [12,016] ----D C:\Users\Bob\AppData\Local\Downloaded Installations
O43 - CFD: 21/07/2015 - 20:57:50 - [0] ----D C:\Users\Bob\AppData\Local\ElevatedDiagnostics
O43 - CFD: 09/05/2015 - 15:58:58 - [0] -SH-D C:\Users\Bob\AppData\Local\EmieBrowserModeList
O43 - CFD: 14/07/2014 - 11:58:15 - [0] -SH-D C:\Users\Bob\AppData\Local\EmieSiteList
O43 - CFD: 14/07/2014 - 11:58:15 - [0] -SH-D C:\Users\Bob\AppData\Local\EmieUserList
O43 - CFD: 14/07/2014 - 11:58:10 - [0] ----D C:\Users\Bob\AppData\Local\Google
O43 - CFD: 02/06/2015 - 08:24:18 - [0,000] ----D C:\Users\Bob\AppData\Local\GWX
O43 - CFD: 05/08/2015 - 17:26:11 - [0] ----D C:\Users\Bob\AppData\Local\Historique
O43 - CFD: 25/12/2012 - 17:06:02 - [0] ----D C:\Users\Bob\AppData\Local\Macromedia
O43 - CFD: 25/12/2014 - 16:02:20 - [0] ----D C:\Users\Bob\AppData\Local\MediaMonkey
O43 - CFD: 05/08/2015 - 18:03:18 - [435,397] ----D C:\Users\Bob\AppData\Local\Microsoft
O43 - CFD: 02/10/2013 - 09:08:06 - [343,433] ----D C:\Users\Bob\AppData\Local\Mozilla
O43 - CFD: 12/06/2014 - 13:59:06 - [0] ----D C:\Users\Bob\AppData\Local\My Games
O43 - CFD: 05/08/2015 - 23:28:37 - [0] ----D C:\Users\Bob\AppData\Local\NetworkTiles
O43 - CFD: 07/08/2015 - 15:02:40 - [143,958] ----D C:\Users\Bob\AppData\Local\Packages
O43 - CFD: 11/03/2013 - 19:40:31 - [0] ----D C:\Users\Bob\AppData\Local\Programs
O43 - CFD: 05/08/2015 - 18:01:40 - [0] ----D C:\Users\Bob\AppData\Local\Publishers
O43 - CFD: 04/12/2013 - 19:00:10 - [0,003] ----D C:\Users\Bob\AppData\Local\StreamRecorder
O43 - CFD: 24/08/2015 - 19:49:05 - [371,567] ----D C:\Users\Bob\AppData\Local\Temp
O43 - CFD: 05/08/2015 - 17:26:11 - [0] ----D C:\Users\Bob\AppData\Local\Temporary Internet Files
O43 - CFD: 05/08/2015 - 17:58:49 - [13,133] ----D C:\Users\Bob\AppData\Local\TileDataLayer
O43 - CFD: 17/01/2013 - 19:12:59 - [155,369] ----D C:\Users\Bob\AppData\Local\VirtualStore
O43 - CFD: 02/08/2014 - 18:41:08 - [0,001] ----D C:\Users\Bob\AppData\Local\WiFi Guard
O43 - CFD: 24/06/2014 - 22:48:01 - [0,035] ----D C:\Users\Bob\AppData\Local\Windows Live
O43 - CFD: 01/09/2013 - 12:14:04 - [0] ----D C:\Users\Bob\AppData\Local\Xilisoft
O43 - CFD: 05/08/2015 - 17:27:41 - [0,004] R---D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 05/08/2015 - 17:58:49 - [0,003] R---D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 17/08/2015 - 17:50:54 - [0,000] R---D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 05/08/2015 - 17:35:14 - [0,002] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS Video Magic
O43 - CFD: 05/08/2015 - 17:35:14 - [0,001] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HTML Editor
O43 - CFD: 10/07/2015 - 13:04:26 - [0,000] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 28/03/2013 - 15:43:02 - [0] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MP3Gain
O43 - CFD: 05/08/2015 - 17:27:42 - [0,003] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orange
O43 - CFD: 17/08/2015 - 17:50:54 - [0,000] R---D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 05/08/2015 - 17:27:42 - [0,007] R---D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/07/2015 - 13:04:45 - [0,007] RS--D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 05/08/2015 - 17:35:14 - [0,000] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinSesame
O43 - CFD: 05/08/2015 - 17:35:14 - [0,000] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XeroBank
~ Scan Program Folder in 02mn 09s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.038356387332650843BCB352BB89A101] - 24/08/2015 - 18:50:12 ---A- . (...) -- C:\Windows\WindowsUpdate.log [275]
O44 - LFC:[MD5.AEFC925F8757E7ED214A1D3A82307495] - 24/08/2015 - 18:47:34 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.0C6EE700DA49C9D96588AB03F74F15E6] - 24/08/2015 - 10:02:20 ---A- . (...) -- C:\Windows\PFRO.log [14848]
O44 - LFC:[MD5.4806CD690A16850F1D2B9F07B9ECBFE0] - 19/08/2015 - 09:10:28 -SHA- . (...) -- C:\Windows\SysNative\sysrdbsr.dat [15372]
O44 - LFC:[MD5.04D694D2E29F232070825534D71E64E6] - 17/08/2015 - 16:49:15 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [256376]
O44 - LFC:[MD5.E0CB36D5D98A097DF001F67D13AF12EC] - 17/08/2015 - 13:59:30 . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\PerfStringBackup.INI [64000]]]]]]
O44 - LFC:[MD5.7742B1CF4E85D648642DB6EA175E6626] - 17/08/2015 - 13:59:30 . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\perfc009.dat [64000]]
O44 - LFC:[MD5.3A367847E99F2AB6978962113D5AA1F8] - 17/08/2015 - 13:59:30 . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\perfc00C.dat [64000]]]
O44 - LFC:[MD5.A1DB631862AA485182D0F35911A69441] - 17/08/2015 - 13:59:30 . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\perfh009.dat [64000]]]]
O44 - LFC:[MD5.7DD59FE5C0930C1937D4CCB14256F380] - 17/08/2015 - 13:59:30 . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\perfh00C.dat [64000]]]]]
O44 - LFC:[MD5.E0CB36D5D98A097DF001F67D13AF12EC] - 17/08/2015 - 13:59:30 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1839260]
O44 - LFC:[MD5.7742B1CF4E85D648642DB6EA175E6626] - 17/08/2015 - 13:59:30 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [138162]
O44 - LFC:[MD5.3A367847E99F2AB6978962113D5AA1F8] - 17/08/2015 - 13:59:30 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [154350]
O44 - LFC:[MD5.A1DB631862AA485182D0F35911A69441] - 17/08/2015 - 13:59:30 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [731332]
O44 - LFC:[MD5.7DD59FE5C0930C1937D4CCB14256F380] - 17/08/2015 - 13:59:30 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [821020]
O44 - LFC:[MD5.E283DE7B5BB438BE4CCD393DA582A5D2] - 11/08/2015 - 10:14:02 ---A- . (...) -- C:\Windows\SysNative\diagtrack_wininternal.dll [404480]
O44 - LFC:[MD5.2C7B2FD825A8AF0A1338D86B5AFA4343] - 11/08/2015 - 10:13:42 ---A- . (...) -- C:\Windows\SysNative\diagtrack_win.dll [413184]
O44 - LFC:[MD5.A70A997B88EAEE0E898DA5773045AFF1] - 11/08/2015 - 10:11:40 ---A- . (...) -- C:\Windows\SysNative\InputService.dll [2446336]
O44 - LFC:[MD5.A70A997B88EAEE0E898DA5773045AFF1] - 11/08/2015 - 10:11:40 ---A- . (...) -- C:\Windows\System32\InputService.dll [2446336]
O44 - LFC:[MD5.81C4B217B93C6CF8953C4845B0C9B405] - 11/08/2015 - 10:10:47 ---A- . (...) -- C:\Windows\SysNative\TextInputFramework.dll [293376]
O44 - LFC:[MD5.81C4B217B93C6CF8953C4845B0C9B405] - 11/08/2015 - 10:10:47 ---A- . (...) -- C:\Windows\System32\TextInputFramework.dll [293376]
O44 - LFC:[MD5.ADBCD98F1955608A74C8C6820D6CAE4D] - 09/08/2015 - 20:44:59 ---A- . (...) -- C:\Windows\DPINST.LOG [17992]
O44 - LFC:[MD5.74E77A9F3DBC1DFE0A3D0D642AB9E9B5] - 09/08/2015 - 20:43:53 ---A- . (...) -- C:\Windows\SysNative\ASGCoInstaller_x64.dll [65456]
O44 - LFC:[MD5.FC98CE6073D93E6038C7D6A28993B9EC] - 08/08/2015 - 07:40:23 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll [365056]
O44 - LFC:[MD5.FC98CE6073D93E6038C7D6A28993B9EC] - 08/08/2015 - 07:40:23 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [365056]
O44 - LFC:[MD5.CB136B267569A62EF63D798BC90ABD5A] - 05/08/2015 - 18:41:09 ---A- . (...) -- C:\Windows\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat [144]
O44 - LFC:[MD5.7C4C498CCB22E70DE85BB08B1887B92F] - 05/08/2015 - 17:11:37 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll [45568]
O44 - LFC:[MD5.7C4C498CCB22E70DE85BB08B1887B92F] - 05/08/2015 - 17:11:37 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [45568]
O44 - LFC:[MD5.CCA153D5EFD8900C0A2E599C2C9877A6] - 05/08/2015 - 17:11:34 ---A- . (...) -- C:\Windows\SysNative\EditionUpgradeManagerObj.dll [505344]
O44 - LFC:[MD5.1C84624A6FAF0336167E54A9D6FA4B05] - 05/08/2015 - 17:11:34 ---A- . (...) -- C:\Windows\SysNative\LicenseManagerApi.dll [32768]
O44 - LFC:[MD5.2DBCC1C6FBC78E2F89360C2B3FED27BE] - 05/08/2015 - 17:04:04 ---A- . (...) -- C:\Windows\setupact.log [21641]
O44 - LFC:[MD5.1B0FA163261D43D1D245514242AA67AA] - 05/08/2015 - 17:03:53 ---A- . (.ELAN Microelectronics Corp. - CoInstaller.) -- C:\Windows\SysNative\ETDCoInstaller.dll [81640]
O44 - LFC:[MD5.9F45771914360A925252A1B7226EC7EC] - 05/08/2015 - 16:59:05 ---A- . (...) -- C:\Windows\SysNative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat [451]
O44 - LFC:[MD5.6B39A55A4E3332E5DE9D1686C8888262] - 05/08/2015 - 16:54:40 ---A- . (...) -- C:\Windows\diagerr.xml [55248]
O44 - LFC:[MD5.6B39A55A4E3332E5DE9D1686C8888262] - 05/08/2015 - 16:54:40 ---A- . (...) -- C:\Windows\diagwrn.xml [55248]
O44 - LFC:[MD5.EB6DC548D5A4F2C32286EFF7AFF7FFD4] - 05/08/2015 - 16:51:55 ---A- . (...) -- C:\Windows\comsetup.log [7218]
O44 - LFC:[MD5.3637AB58F74F288DEF9BBB9FB8D02392] - 05/08/2015 - 16:51:21 ---A- . (...) -- C:\Windows\SysNative\emptyregdb.dat [23208]
O44 - LFC:[MD5.B5F02EC39B145E39B6C30542204911EB] - 05/08/2015 - 16:33:21 ---A- . (...) -- C:\Windows\DtcInstall.log [4362]
O44 - LFC:[MD5.E446AA183E6344CF84A98730098D3D46] - 05/08/2015 - 16:22:24 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\SysNative\OpenCL.DLL [64000]
O44 - LFC:[MD5.E446AA183E6344CF84A98730098D3D46] - 05/08/2015 - 16:22:24 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.DLL [64000]
O44 - LFC:[MD5.9AC2925125E34EE169173D212866F666] - 05/08/2015 - 16:21:51 ---A- . (.NVIDIA Corporation - NVIDIA Display Shell Extension.) -- C:\Windows\SysNative\nvshext.dll [62792]
O44 - LFC:[MD5.E8A524D10C99A39992148703CEC60185] - 05/08/2015 - 16:21:51 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.5.) -- C:\Windows\SysNative\nvsvc64.dll [3493008]
O44 - LFC:[MD5.1B44B5244EAF26BEC315AE84B0AFFC66] - 05/08/2015 - 16:21:51 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.5.) -- C:\Windows\SysNative\nvvsvc.exe [937616]
O44 - LFC:[MD5.083495DA4CFDFBB6AB3C44B05B7BA265] - 05/08/2015 - 16:21:51 ---A- . (.NVIDIA Corporation - NVIDIA French language resource library.) -- C:\Windows\SysNative\nv3dappshextr.dll [75080]
O44 - LFC:[MD5.F49929E1249B951D5CAEA622E6ED455C] - 05/08/2015 - 16:21:51 ---A- . (.NVIDIA Corporation - NVIDIA Shell Extensions.) -- C:\Windows\SysNative\nv3dappshext.dll [1059984]
O44 - LFC:[MD5.26836E4F6E6602D3418E49F7EA801A52] - 05/08/2015 - 16:21:50 ---A- . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\SysNative\nvcpl.dll [6873744]
O44 - LFC:[MD5.346D3B40EE85127A1FD664FD2A978B5B] - 05/08/2015 - 16:21:50 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.5.) -- C:\Windows\SysNative\nvsvcr.dll [2558792]
O44 - LFC:[MD5.8D02DE6F669FB1D581771150A03DE4B4] - 05/08/2015 - 16:21:50 ---A- . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\SysNative\nvmctray.dll [385168]
O44 - LFC:[MD5.8B62577DB6E9DA579F31B7A3C2A737CE] - 05/08/2015 - 16:18:33 ---A- . (...) -- C:\Windows\SysNative\NetSetupMig.log [33741]
O44 - LFC:[MD5.E3A45B55E3D5D714ADE7897CF383B035] - 05/08/2015 - 15:54:53 ---A- . (...) -- C:\Windows\WindowsUpdate (1).log [2055708]
O44 - LFC:[MD5.C397F52BD6B482E6E33B065267680A87] - 03/08/2015 - 03:18:01 ---A- . (.Microsoft Corp. - Microsoft PlayReady Client Framework Dll.) -- C:\Windows\SysNative\Windows.Media.Protection.PlayReady.dll [8613200]
O44 - LFC:[MD5.C397F52BD6B482E6E33B065267680A87] - 03/08/2015 - 03:18:01 ---A- . (.Microsoft Corp. - Microsoft PlayReady Client Framework Dll.) -- C:\Windows\System32\Windows.Media.Protection.PlayReady.dll [8613200]
O44 - LFC:[MD5.79431E9EEAE85C3E579D28265D2E3F21] - 03/08/2015 - 02:24:19 . (...) -- C:\Windows\System32\tileobjserver.dll [293376]]
O44 - LFC:[MD5.AD5EACF5ED458DD452C7CB4162C777D3] - 03/08/2015 - 02:14:13 ---A- . (...) -- C:\Windows\SysNative\facecredentialprovider.dll [247808]
O44 - LFC:[MD5.35B5BC9E3248A8D159E4D19F48479891] - 30/07/2015 - 07:05:18 ---A- . (...) -- C:\Windows\SysNative\CoreUIComponents.dll [2498808]
O44 - LFC:[MD5.35B5BC9E3248A8D159E4D19F48479891] - 30/07/2015 - 07:05:18 ---A- . (...) -- C:\Windows\System32\CoreUIComponents.dll [2498808]
O44 - LFC:[MD5.1A7D9B369F388B53263E7B55AAFFEB4C] - 30/07/2015 - 05:08:34 . (...) -- C:\Windows\System32\InstallAgent.exe [2446336]]
O44 - LFC:[MD5.711877C9F5CD75070D57431F272DCE78] - 30/07/2015 - 04:52:26 . (...) -- C:\Windows\System32\ACPBackgroundManagerPolicy.dll []
O44 - LFC:[MD5.240FF83DD79546B26F187FAB20F83864] - 30/07/2015 - 04:44:49 . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\AudioEndpointBuilder.dll [45568]]
O44 - LFC:[MD5.FAF8CE5C039B27FEDBAEEB72BC2AFFF2] - 28/07/2015 - 17:39:19 ---A- . (.Realtek Semiconductor Corp. - Realtek ASIO Control Panel.) -- C:\Windows\RTASIOCP.exe [196608]
O44 - LFC:[MD5.FF97BC35DA938684634492DA69DE1033] - 13/07/2015 - 17:28:00 ---A- . (...) -- C:\Windows\SysNative\nvcoproc.bin [5096627]
~ Scan Files in 00mn 28s
---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de lÉditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (...) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s
---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Ahcache.sys . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\Ahcache.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Pilote du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote dextension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Ahcache.sys . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\Ahcache.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Pilote du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote dextension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51) (None)
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53) (None)
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "DSCAutomationHostEnabled"=2
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableRegistryTools"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRecentDocsHistory"=0
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2C49A2441EBB24C6ACFB524C1459115F] - 10/07/2015 - 11:59:38 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [107360]
~ Scan Drivers in 00mn 00s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.32 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur dévénements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur dévénements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Windows\System32\ie4uinit.exe (.not file.)
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
~ Scan Keys in 00mn 00s
---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [192000]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [192000]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [283136]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1335296]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [954368]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [954880]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service douverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [31232]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations dapplication.) -- C:\Windows\System32\appinfo.dll [93696]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151040]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [106496]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1008640]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [226304]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur dordinateurs.) -- C:\Windows\System32\browser.dll [133120]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [324608]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [371200]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [95744]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2093056]
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\System32\dcpsvc.dll [196096]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [167424]
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [186368]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique daccès distant.) -- C:\Windows\System32\rasauto.dll [106496]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions daccès à distance.) -- C:\Windows\System32\rasmans.dll [679936]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire dinterface dynamique.) -- C:\Windows\System32\mprdim.dll [497152]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification dévénements système (SENS).) -- C:\Windows\System32\sens.dll [72192]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de lapplication dassistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [452608]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [311808]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2235904]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [1168896]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [593920]
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [63488]
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1149440]
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1019392]
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [343040]
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [717312]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [27136]
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776]
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [918016]
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\System32\RDXService.dll [996352]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [359936]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire dinstallation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [237568]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [58368]
~ Scan Services in 00mn 01s
---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.4A93070098539B54FDA391D4D551C880] [SPRF][22/07/2009] (...) -- C:\ProgramData\SetStretch.exe [24576]
[MD5.7B4C9C9C749E7F55515A660E19C3606F] [SPRF][09/08/2015] (.Ellora Assets Corporation - Freemake Audio Converter Setup.) -- C:\Users\Bob\AppData\Local\Temp\FreemakeAudioConverterFull.exe [15300624]
[MD5.CD5F805EE8E53B4616D87DD41CE799E3] [SPRF][24/08/2015] (...) -- C:\Users\Bob\AppData\Local\Temp\~autoupdate.dat [184]
[MD5.909B9AFCB368F888E4813FAF1B52ABE1] [SPRF][24/08/2015] (...) -- C:\Users\Bob\AppData\Local\Temp\~gu3-ver.dat [107]
[MD5.380D17CAA33EAC6DF0E011C538D94CE7] [SPRF][24/08/2015] (...) -- C:\Users\Bob\AppData\Local\Temp\~upgrade.dat [1306]
[MD5.60193FB19F0441B7EE1110F4BE8290CF] [SPRF][27/12/2012] (...) -- C:\Users\Bob\AppData\Roaming\ezpinst.exe [93696]
[MD5.CA4A865B04D84129AC08664560AA7CCD] [SPRF][12/06/2014] (...) -- C:\Users\Bob\AppData\Roaming\my_intel.sys [21]
[MD5.899E41A057038CB5BE892FE428BDC576] [SPRF][27/12/2012] (.VSO Software - low level access layer for CD/DVD/BD devices.) -- C:\Users\Bob\AppData\Roaming\pcouffin.sys [82048]
[MD5.9537F46357BD0115570D0713663864F5] [SPRF][24/08/2015] (...) -- C:\Users\Bob\AppData\Roaming\sp_data.sys [401]
[MD5.506FAF7DC38D21C0F513E2B8D78345EA] [SPRF][14/06/2015] (...) -- C:\Users\Bob\Desktop\cc_20150614_082119.reg [20166]
[MD5.DCF2FFBEDF95A08A990B98FBFA83901C] [SPRF][24/06/2015] (...) -- C:\Users\Bob\Desktop\cc_20150624_082900.reg [2372]
[MD5.F551F640B249B20A6DE974720BB20044] [SPRF][06/07/2015] (...) -- C:\Users\Bob\Desktop\cc_20150706_080132.reg [2838]
[MD5.06554DA247773ADF22C98BE111EBADEC] [SPRF][24/08/2015] (...) -- C:\Users\Bob\Desktop\cc_20150824_142417.reg [217246]
~ Scan Files in 00mn 00s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{E3BC2233-BB3A-4865-A901-83C082278A84}" | In - Private - P17 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{12535915-77D6-4380-BB0C-B251A8D11043}" | In - Private - P6 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{6A1C4AFF-5A63-4C47-847B-32ED28137EC6}" | In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe
O87 - FAEL: "{40E04FF9-051C-4B36-88EC-4ABFBCF4BFAA}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe
O87 - FAEL: "{CA465055-C7E7-415E-8794-016197CE1761}" | In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe
O87 - FAEL: "{20FF9DCD-3819-46A8-9C59-EA2C04796530}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe
O87 - FAEL: "{01206EA0-7E27-4DDB-8EA9-42045492C237}" | In - None - P17 - TRUE | .(.Pas de propriétaire - DedicarzService.) -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe
O87 - FAEL: "{97E15C24-A32A-48D2-B47B-C7E85D7E9BCC}" | In - None - P6 - TRUE | .(.Pas de propriétaire - DedicarzService.) -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe
O87 - FAEL: "{E739197D-AD87-4458-AE63-0DAC6DDF7A76}" | In - None - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{401BD8A6-4FA3-4F96-8D7A-0E997D4AAF44}" | In - None - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{D83108B9-FE70-4D12-85A5-AED084B5749C}" | In - Public - P17 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{1F92FE43-8A76-4645-A76E-984993C6946A}" | In - Public - P6 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "UDP Query User{586DDD04-B5EC-414C-9CA1-B5E75B96FF93}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe
O87 - FAEL: "TCP Query User{7CEC558C-3AAE-4C39-B2B0-DF0F663FA2A3}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe
O87 - FAEL: "{01423F67-D99B-4B4E-9578-0B11449C866D}" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{97127B63-407E-4C41-BF7C-086F02D922FA}" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "UDP Query User{15670B0F-4D59-455D-B77F-97E81B00CAD5}C:\program files (x86)\mediamonkey\mediamonkey.exe" | In - Public - P17 - TRUE | .(.Ventis Media Inc. - MediaMonkey.) -- C:\program files (x86)\mediamonkey\mediamonkey.exe
O87 - FAEL: "TCP Query User{C265E8AE-6CE5-419F-AAA5-C4203583D324}C:\program files (x86)\mediamonkey\mediamonkey.exe" | In - Public - P6 - TRUE | .(.Ventis Media Inc. - MediaMonkey.) -- C:\program files (x86)\mediamonkey\mediamonkey.exe
O87 - FAEL: "{392EDC86-ABA9-4AF8-91E4-AF6490060B82}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDirector.) -- C:\Program Files (x86)\CyberLink\PowerDirector\PDR8.exe
O87 - FAEL: "{EA8D6E17-80DD-4400-BF29-F06A6201531B}" | In - None - P6 - TRUE | .(.CyberLink Corp. - CyberLink PowerDVD Cinema 10 Main Program.) -- C:\Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
O87 - FAEL: "{61C0A0F0-D498-46BA-A0CE-EBC397BFA24A}" | In - None - P6 - TRUE | .(.CyberLink Corp. - ASUSDVD.) -- C:\Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD10.exe
O87 - FAEL: "{DEB771AB-04F9-4BDC-A3ED-1F405B78BB2E}" | In - Public - P6 - TRUE | .(.Ensemble Studios - Age of Empires 3.) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
O87 - FAEL: "{ED7CE07A-8872-4A8E-AAE2-62CFCC13F53E}" | In - Public - P17 - TRUE | .(.Ensemble Studios - Age of Empires 3.) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
O87 - FAEL: "{7AF35EB2-6085-4A01-963E-10660C71C1EC}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{81BA4C9B-BA03-4381-B374-AE0678C98AEA}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{0569AFFD-EA70-4F49-8AF0-738EDD38D0A0}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{AE3CDEE1-4B4A-468A-A1A6-A5A4DBB12A33}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{D4AD782D-AA89-4407-87E6-7B38E3BF0BA9}" | In - None - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{B9D14AA3-FC15-4C0B-A9D9-95D5E5800A6E}" | In - None - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{F342BBE5-36D1-4AB0-870E-888E9A599A14}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{5FAD051D-F5D7-4AD1-AF9D-A92908301559}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "TCP Query User{8A220231-D7EA-4436-80AC-0FE589E84C72}C:\program files (x86)\mediamonkey\mediamonkey.exe" | In - Private - P6 - TRUE | .(.Ventis Media Inc. - MediaMonkey.) -- C:\program files (x86)\mediamonkey\mediamonkey.exe
O87 - FAEL: "UDP Query User{25C9AC4D-BAE1-4CEE-860A-D728ADF5DD3A}C:\program files (x86)\mediamonkey\mediamonkey.exe" | In - Private - P17 - TRUE | .(.Ventis Media Inc. - MediaMonkey.) -- C:\program files (x86)\mediamonkey\mediamonkey.exe
~ Scan Firewall in 00mn 01s
---\\ Product Upgrade Codes (O90)
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office.) -- C:\windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "08B1A79DF131296459346E2559D6B899" . (.ASUS Instant Key.) -- C:\Windows\Installer\{D97A1B80-131F-4692-9543-E652956D8B99}\_853F67D554F05449430E7E.exe
O90 - PUC: "098990BCF5D15D11E99A0005AB3E711E" . (.PowerDirector.) -- C:\Windows\Installer\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\ARPPRODUCTICON.exe
O90 - PUC: "0ED9D238CFA898648991D4BBEDDBE3F4" . (.Microsoft Games for Windows - LIVE Redistributable.) -- C:\Windows\Installer\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}\GameForWindowsLiveRedist.exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "1E4D8827050818B49BCE8F211DA76D39" . (.Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed.) -- C:\Windows\Installer\{7288D4E1-8050-4B81-B9EC-F812D17AD693}\IntelBluetoothICO
O90 - PUC: "21F1DBD139DE0C947ACC65BCED841885" . (.ASUS LifeFrame3.) -- C:\Windows\Installer\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}\_853F67D554F05449430E7E.exe
O90 - PUC: "22AA45870F2A92F42A9E0D5C2A6B587E" . (.Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology.) -- C:\Windows\Installer\{7854AA22-A2F0-4F29-A2E9-D0C5A2B685E7}\IntelBluetoothICO
O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico
O90 - PUC: "3342ABDE019027C4C8B5F8DEEAE31FE8" . (.Intel(R) WiDi.) -- C:\Windows\Installer\{EDBA2433-0910-4C72-8C5B-8FEDAE3EF18E}\ARPPRODUCTICON.exe
O90 - PUC: "381B8F07BE994034AB5380E0D2FF2D3A" . (.Age of Empires III.) -- C:\Windows\Installer\{70F8B183-99EB-4304-BA35-080E2DFFD2A3}\ARPPRODUCTICON.exe
O90 - PUC: "42C6FBF1DF1C10144AB2C065F4E9E897" . (.PowerStarter.) -- C:\Windows\Installer\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\ARPPRODUCTICON.exe
O90 - PUC: "47E4DFEFEE586AB4DA200E9FB93C5FE1" . (.calibre.) -- C:\Windows\Installer\{FEFD4E74-85EE-4BA6-AD02-E0F99BC3F51E}\main_icon
O90 - PUC: "50FA96906FF400C4496034952983EDD0" . (.ASUS Splendid Video Enhancement Technology.) -- C:\Windows\Installer\{0969AF05-4FF6-4C00-9406-43599238DE0D}\_853F67D554F05449430E7E.exe
O90 - PUC: "5E3E958AF26CAFB4FAD1B2590E1366FA" . (.ASUS USB Charger Plus.) -- C:\Windows\Installer\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}\_853F67D554F05449430E7E.exe
O90 - PUC: "66D2718596F25124A9CEDE1869207363" . (.ASUS Tutor.) -- C:\windows\Installer\{58172D66-2F69-4215-9AEC-ED8196023736}\_853F67D554F05449430E7E.exe
O90 - PUC: "68AB67CA408033019195008142412751" . (.Adobe Refresh Manager.) -- C:\WINDOWS\Installer\{AC76BA86-0804-1033-1959-001824147215}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744CAF070E41400" . (.Adobe Acrobat Reader DC - Français.) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico
O90 - PUC: "6A6823D4BA6FA894284A4E0F0425F9D3" . (.ASUS Smart Gesture.) -- C:\WINDOWS\Installer\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}\_853F67D554F05449430E7E.exe
O90 - PUC: "7CAE4331FE6D77147808509C3658C33D" . (.Intel(R) PRO/Wireless Driver.) -- C:\Windows\Installer\{1334EAC7-D6EF-4177-8780-05C963853CD3}\ARPPRODUCTICON.exe
O90 - PUC: "8489373E92353E84D882B5DBE6B83E48" . (.MediaEspresso.) -- C:\Windows\Installer\{E3739848-5329-48E3-8D28-5BBD6E8BE384}\ARPPRODUCTICON.exe
O90 - PUC: "A58BCE98339DAEC41961C5CBC9E29DB5" . (.ASUS Instant Connect.) -- C:\Windows\Installer\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}\_853F67D554F05449430E7E.exe
O90 - PUC: "AD84F16DB726E4043951236A151BB846" . (.Intel® PROSet/Wireless WiFi Software.) -- C:\Windows\Installer\{D61F48DA-627B-404E-9315-32A651B18B64}\ARPPRODUCTICON.exe
O90 - PUC: "B316307EBADBE3346AA6ED20363E3DD5" . (.Windows Live Messenger.) -- C:\WINDOWS\Installer\{E703613B-BDAB-433E-A66A-DE0263E3D35D}\MsblIco.Exe
O90 - PUC: "B476F94747628E7478C965620AB6A219" . (.ASUS InstantOn.) -- C:\Windows\Installer\{749F674B-2674-47E8-879C-5626A06B2A91}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "B96BED57C6B44D110BEC00AA00CB2C81" . (.Microsoft Works 6.0.) -- C:\Windows\Installer\{75DEB69B-4B6C-11D4-B0CE-00AA00BCC218}\Win2Kico.ico
O90 - PUC: "C7030BC4E565144468EBD02F4EBF28C8" . (.Microsoft Games for Windows Marketplace.) -- C:\Windows\Installer\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}\GameForWindowsLiveDash.exe
O90 - PUC: "D38BA498FA9A45E4FB3F7A62A2A0C631" . (.Motorola Device Software Update.) -- C:\Windows\Installer\{894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "D40790EA150952C49B04778F980F9CF3" . (.OVTScanner_Vista64.) -- C:\Windows\Installer\{AE09704D-9051-4C25-B940-77F889F0C93F}\ARPPRODUCTICON.exe
O90 - PUC: "DE532CED4A8571542A874CE1D8EABAB3" . (.PowerDVD.) -- C:\Windows\Installer\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\ARPPRODUCTICON.exe
O90 - PUC: "E1B4CC96BDA07E84385D4BD58ADC3102" . (.Alcor Micro USB Card Reader.) -- C:\Windows\Installer\{69CC4B1E-0ADB-48E7-83D5-B45DA8CD1320}\ARPPRODUCTICON.exe
O90 - PUC: "E261E417F4DCB1F43820F7159704C952" . (.Windows Live Writer.) -- C:\WINDOWS\Installer\{714E162E-CD4F-4F1B-8302-7F5179409C25}\ApplicationIcon.ico
O90 - PUC: "E339C5BAD7C503D43B41C9384AB949EB" . (.ATK Package.) -- C:\WINDOWS\Installer\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "F2A6E95710F1FE540A4C221F5BC69B57" . (.Motorola Mobile Drivers Installation 6.3.0.) -- C:\Windows\Installer\{759E6A2F-1F01-45EF-A0C4-22F1B56CB975}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "FB9326B958E40954D827153ED01B9AAA" . (.ASUS Power4Gear Hybrid.) -- C:\Windows\Installer\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}\_853F67D554F05449430E7E.exe
~ Scan Files in 00mn 00s
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 07/07/2015 82128 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Demand 12/08/2015 269000 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 26/03/2014 115512 | (ASLDRService) . (.ASUSTek Computer Inc..) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
SR - | Auto 13/04/2012 277120 | (ASUS InstantOn) . (.ASUS.) - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
SR - | Auto 21/11/2011 96896 | (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 23/05/2012 243728 | (CLKMSVC10_38F51D56) . (.CyberLink.) - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
SR - | Demand 11/07/2015 281488 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SR - | Auto 1970544 | (Dedicarz Service) . (...) - C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe
SR - | Auto 05/08/2015 147688 | (ETDService) . (.ELAN Microelectronics Corp..) - C:\Program Files\Elantech\ETDService.exe
SR - | Demand 04/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SR - | Auto 11/07/2015 319888 | (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe
SR - | Auto 20/04/2012 635104 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 25/06/2012 166720 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 17/07/2012 277824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 18/06/2015 1133880 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
SR - | Demand 15/11/2013 137528 | (Motorola Device Manager) . (.Motorola Mobility LLC.) - C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
SR - | Auto 18/08/2015 149160 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 13/07/2015 937616 | (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe
SR - | Auto 10/12/2013 1364256 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 08/06/2015 730648 | (Orange update Core Service) . (.Orange SA.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
SR - | Auto 02/09/2011 65657 | (PST Service) . (.Motorola.) - C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
SR - | Auto 247152 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
SR - | Auto 17/07/2012 365376 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Demand 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Demand 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Demand 10/07/2015 39856 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 03s
End of the scan (1378 lines in 04mn 11s)(0)
Run by Bob at 24/08/2015 19:50:24
State : Problème connexion internet
UAC : Deactivate by program
---\\ Web Browser
MSIE: Internet Explorer v9.11.10240.16384
MFIE: Mozilla Firefox 40.0.2 v40.0.2 (Defaut)
---\\ Windows Product Information
~ Langage: Français
Windows 8 Home Premium Edition, 64-bit (Build 9200)
Windows Server License Manager Script : OK
~ ion : Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : 8HVX7
Windows License : OK
~ Windows Remaining Initializations Number : 1001
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8077 MB (69% free)
System Restore: Activé (Enable)
System drive C: has 224 GB (60%) free of 372 GB
---\\ Logged in mode
~ Computer Name: MICHEL
~ User Name: Bob
~ All Users Names: UpdatusUser, DefaultAccount, Bob, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Bob\AppData\Roaming\
~ %Desktop% : C:\Users\Bob\Desktop\
~ %Favorites% : C:\Users\Bob\Favorites\
~ %LocalAppData% : C:\Users\Bob\AppData\Local\
~ %StartMenu% : C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 224 Go of 372 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 160 Go of 343 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Hard drive, Flash drive, Thumb drive (Free 120 Go of 195 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.F1CBCB7FA6F3B309639AA2D4EF74469C] - (.Microsoft Corporation - Explorateur Windows.) (.11/08/2015 - 11:04:23.) -- C:\Windows\Explorer.exe [4532304]
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - (.Microsoft Corporation - Application de démarrage de Windows.) (.05/08/2015 - 17:11:34.) -- C:\Windows\System32\Wininit.exe [290312]
[MD5.FE32B8423711B4B4378C0BA3C3560ED4] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.05/08/2015 - 17:11:34.) -- C:\Windows\System32\wininet.dll [2741760]
[MD5.26EFEFD877A84EE9FBDE6DEE630892C9] - (.Microsoft Corporation - Application douverture de session Windows.) (.05/08/2015 - 17:11:34.) -- C:\Windows\System32\Winlogon.exe [578048]
[MD5.ECB1943967424DFB96E03F6A098434EF] - (.Microsoft Corporation - Bibliothèque de licences.) (.05/08/2015 - 17:11:34.) -- C:\Windows\System32\sppcomapi.dll [430592]
[MD5.6C12C7E01A4F64E0AA9C88AF66955CC9] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.10/07/2015 - 12:00:10.) -- C:\Windows\system32\Drivers\AFD.sys [577888]
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.10/07/2015 - 11:59:39.) -- C:\Windows\system32\Drivers\atapi.sys [28512]
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - (.Microsoft Corporation - CD-ROM File System Driver.) (.10/07/2015 - 12:00:14.) -- C:\Windows\system32\Drivers\Cdfs.sys [92672]
[MD5.CA160E02F35A61C6F5C681FB4669C519] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.10/07/2015 - 11:59:39.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080]
[MD5.25435407D97419627F4B10653433BF2B] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.10/07/2015 - 11:59:57.) -- C:\Windows\system32\Drivers\DfsC.sys [138240]
[MD5.C277A49F8A8295840DEBC9240B75A282] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.10/07/2015 - 11:59:36.) -- C:\Windows\system32\Drivers\HDAudBus.sys [80896]
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - (.Microsoft Corporation - Pilote de port i8042.) (.10/07/2015 - 11:59:38.) -- C:\Windows\system32\Drivers\i8042prt.sys [114688]
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - (.Microsoft Corporation - IP Network Address Translator.) (.10/07/2015 - 11:59:53.) -- C:\Windows\system32\Drivers\IpNat.sys [143360]
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.10/07/2015 - 11:59:59.) -- C:\Windows\system32\Drivers\MRxSmb.sys [415232]
[MD5.F0D791348AD254360CC3C3E501CCB745] - (.Microsoft Corporation - MBT Transport driver.) (.10/07/2015 - 12:00:13.) -- C:\Windows\system32\Drivers\netBT.sys [273408]
[MD5.466EC5659C02ED53DBD47DC1BC2B8086] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.30/07/2015 - 07:03:30.) -- C:\Windows\system32\Drivers\ntfs.sys [2116448]
[MD5.38F1AE32339731F6E5A7281AE8042545] - (.Microsoft Corporation - Pilote de port parallèle.) (.10/07/2015 - 11:59:39.) -- C:\Windows\system32\Drivers\Parport.sys [96768]
[MD5.CA60F6C03611AF1710BC903ED9F566FB] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.10/07/2015 - 11:59:52.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [104960]
[MD5.A32AED8C644734B283A7C9D08D76064D] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.10/07/2015 - 17:28:17.) -- C:\Windows\system32\Drivers\rdpdr.sys [176128]
[MD5.28E1E63A1AC65E17B3194238FA2CF3BF] - (.Microsoft Corporation - TDI Translation Driver.) (.10/07/2015 - 12:00:10.) -- C:\Windows\system32\Drivers\tdx.sys [116576]
[MD5.823A237D871CD652C6BFD47BECB6810A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.10/07/2015 - 11:59:39.) -- C:\Windows\system32\Drivers\volsnap.sys [378720]
~ Scan Generic Processes in 00mn 02s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/31
~ Mes musiques (My Musics) : 4/45
~ Mes Favoris (My Favorites) : 1/8
~ Mes Documents (My Documents) : 2/3961
~ Mon Bureau (My Desktop) : 2/4990
~ Menu demarrer (Programs) : 1/39
~ Scan Hidden Files in 00mn 38s
---\\ Processus lancés
[MD5.B7BCA8A30CE13A283CDBDECEF5616C39] - (.ASUS - ACMON.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [107192] [PID.5968]
[MD5.FC040252FB2AA74545D8B17FE9CD4D78] - (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Bob\AppData\Local\Microsoft\OneDrive\OneDrive.exe [404064] [PID.6036]
[MD5.97202E9C0D86387888435470CCAF45BE] - (.ASUSTeK - ACEngSvr Module.) -- C:\Windows\SysWOW64\ACEngSvr.exe [192000] [PID.4528]
[MD5.749C9E51E6D5A5AC23D2B4B8B63CAFE9] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [377000] [PID.6484]
[MD5.505FA1C10A599256E177E90A78813DDB] - (.XnView, http://www.xnview.com - XnView for Windows.) -- C:\Program Files (x86)\XnView\xnview.exe [5192176] [PID.4480]
[MD5.EA2542DA415B6B72A132ED89936D2093] - (...) -- C:\Program Files (x86)\Microsoft Office\Office\WINWORD.exe [5324560] [PID.7164]
[MD5.A3FBEC2CCD8F1AC7B61927C186A4BE1A] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [3793920] [PID.6656]
~ Scan Processes Running in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\fkfr7wgw.default-1400505168451\prefs.js
C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\fkfr7wgw.default-1400505168451\user.js
C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\rvxn0hte.Bob\prefs.js
C:\Users\Bob\AppData\Roaming\Mozilla\Firefox\Profiles\rvxn0hte.Bob\user.js
M0 - MFSP: prefs.js [Bob - fkfr7wgw.default-1400505168451] http://www.google.fr
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\fr-dicollecte@dictionaries.addons.mozilla.org] [] Dictionnaires français v5.3 (.Olivier R..)
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\youtubemp3podcaster@jeremy.d.gregorio.com] [] Youtube MP3 Podcaster v3.7.5 (.Jeremy Gregorio.)
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\{0b457cAA-602d-484a-8fe7-c1d894a011ba}] [] FireShot v0.98.75 (.Eugene G. Suslikov.)
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\{43c507fe-30de-47e0-8449-3fc7770c0634}] [] BlockNote v2.5.3.1-signed (.Carmine Chiarelli.)
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\{5384767E-00D9-40E9-B72F-9CC39D655D6F}] [] EPUBReader v1.5.0.6.1-signed (.Michael Volz.)
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20150708 (.WOT Services Oy.)
M2 - MFEP: prefs.js [Bob - fkfr7wgw.default-1400505168451\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}] [] Flash and Video Download v1.74 (.Vicente Amor.)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll
~ Scan Firefox Browser in 00mn 02s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (...) (No version) -- (.not file.)
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [ACMON] . (.ASUS - ACMON.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.)
O4 - HKCU\..\Run: [GUDelayStartup] . (.Glarysoft Ltd - Glary Utilities StartupManager.) -- C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Bob\AppData\Local\Microsoft\OneDrive\OneDrive.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS InstantKey] . (.ASUS - Ikey_start.) -- C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdatePSTShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe
O4 - HKUS\S-1-5-21-320857880-1101057498-3739190395-1002-320857880-1101057498-3739190395-1001\..\Run: [GUDelayStartup] . (.Glarysoft Ltd - Glary Utilities StartupManager.) -- C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe
O4 - HKUS\S-1-5-21-320857880-1101057498-3739190395-1002-320857880-1101057498-3739190395-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKUS\S-1-5-21-320857880-1101057498-3739190395-1002-320857880-1101057498-3739190395-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Bob\AppData\Local\Microsoft\OneDrive\OneDrive.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\AD Sound Recorder.lnk . (.Adrosoft.) -- C:\Program Files (x86)\AD Sound Recorder\ADSRecorder.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Audacity.lnk . (.The Audacity Team.) -- C:\Program Files (x86)\Audacity\audacity.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\DVD Flick.lnk . (.Dennis "Exl" Meuwissen.) -- C:\Program Files (x86)\DVD Flick\dvdflick.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Easy Photo Tools.lnk . (...) -- C:\Program Files (x86)\EasyPhotoTools\EasyPhotoTools.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\empires2.exe - Raccourci.lnk . (.Microsoft Corporation.) -- C:\Users\Bob\Games\AgeofEmpires2Portable®\AgeofEmpires2Portable\empires2.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Free Sound Recorder.lnk . (...) -- C:\Program Files (x86)\Free Sound Recorder\FreeSoundRecorder.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Gentibus CD.lnk . (.Luc DI FELICE.) -- C:\Program Files (x86)\Gentibus CD\GentibusCD.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\HTML Editor.lnk . (.Microsoft.) -- C:\Program Files (x86)\Sheva Software\HTML Editor\Debug\HTML Editor.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\HTTrack Website Copier.lnk . (.HTTrack.) -- C:\Program Files (x86)\WinHTTrack\WinHTTrack.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\ma Livebox.lnk . (.Orange.) -- C:\Program Files (x86)\Orange\ma Livebox\maLivebox.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Media Convert Master.lnk . (...) -- C:\Program Files (x86)\Media Convert Master\MediaConvertMaster.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Mp3tag.lnk . (.Florian Heidenreich.) -- C:\Program Files (x86)\Mp3tag\Mp3tag.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\XnView.lnk . (.XnView, http://www.xnview.com.) -- C:\Program Files (x86)\XnView\xnview.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\AD Sound Recorder.lnk . (.Adrosoft.) -- C:\Program Files (x86)\AD Sound Recorder\ADSRecorder.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Audacity.lnk . (.The Audacity Team.) -- C:\Program Files (x86)\Audacity\audacity.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\DVD Flick.lnk . (.Dennis "Exl" Meuwissen.) -- C:\Program Files (x86)\DVD Flick\dvdflick.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Easy Photo Tools.lnk . (...) -- C:\Program Files (x86)\EasyPhotoTools\EasyPhotoTools.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\empires2.exe - Raccourci.lnk . (.Microsoft Corporation.) -- C:\Users\Bob\Games\AgeofEmpires2Portable®\AgeofEmpires2Portable\empires2.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Free Sound Recorder.lnk . (...) -- C:\Program Files (x86)\Free Sound Recorder\FreeSoundRecorder.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Gentibus CD.lnk . (.Luc DI FELICE.) -- C:\Program Files (x86)\Gentibus CD\GentibusCD.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\HTML Editor.lnk . (.Microsoft.) -- C:\Program Files (x86)\Sheva Software\HTML Editor\Debug\HTML Editor.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\HTTrack Website Copier.lnk . (.HTTrack.) -- C:\Program Files (x86)\WinHTTrack\WinHTTrack.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\ma Livebox.lnk . (.Orange.) -- C:\Program Files (x86)\Orange\ma Livebox\maLivebox.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Media Convert Master.lnk . (...) -- C:\Program Files (x86)\Media Convert Master\MediaConvertMaster.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\Mp3tag.lnk . (.Florian Heidenreich.) -- C:\Program Files (x86)\Mp3tag\Mp3tag.exe
O4 - Global Startup: C:\Documents And Settings\Bob\Desktop\XnView.lnk . (.XnView, http://www.xnview.com.) -- C:\Program Files (x86)\XnView\xnview.exe
~ Scan Global Startup in 00mn 10s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim daffectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur despace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur despace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{123f0656-4c1f-4d73-9f84-fee31cd86a53}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{75e7492d-97e2-400a-bf06-5f81977fdc45}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{123f0656-4c1f-4d73-9f84-fee31cd86a53}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{75e7492d-97e2-400a-bf06-5f81977fdc45}: DhcpNameServer = 192.168.1.1 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Photo Gallery Album Download Protocol Handl.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\NVIDIA~1\3DVISI~1\NVSTIN~1.dll (.not file.)
~ Scan AppInit DLL in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} . (.EldoS Corporation - CbFs Mount Notifier.) -- C:\Windows\system32\CbFsMntNtf3.dll
O21 - SSODL: EldosMountNotificator-cbfs5 - {407910AE-5100-4ACA-B41B-670ACA265E09} . (.EldoS Corporation - Mount Notifier.) -- C:\WINDOWS\system32\cbfsMntNtf5.dll
~ Scan SSODL in 00mn 00s
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) [64Bits] - {407910AE-5100-4ACA-B41B-670ACA265E09} - (.not file.)
~ Scan STS/SSO in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ASLDR Service (ASLDRService) . (.ASUSTek Computer Inc. - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) . (.ASUS - ASUS InstantOn Program.) - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS - GFNEXSrv.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CyberLink Product - 2012/11/03 23:48:01 (CLKMSVC10_38F51D56) . (.CyberLink - CyberLink KM Service.) - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
O23 - Service: Dedicarz Service (Dedicarz Service) . (.Pas de propriétaire - DedicarzService.) - C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe
O23 - Service: Elan Service (ETDService) . (.ELAN Microelectronics Corp. - Elan Service.) - C:\Program Files\Elantech\ETDService.exe
O23 - Service: Intel(R) HD Graphics Control Panel Servi (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service In (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation - Pas de description.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.5.) - C:\WINDOWS\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Orange update Core Service (Orange update Core Service) . (.Orange SA - Orange Upd@te.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O23 - Service: PST Service (PST Service) . (.Motorola - ForwardDemon.) - C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (.not file.)
~ Scan Services in 00mn 01s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize 5.job
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[MD5.545B2D9299AC744497BDA9C50D561B95] [APT] [ASUS Smart Gesture Launcher] (.AsusTek.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe
[MD5.545B2D9299AC744497BDA9C50D561B95] [APT] [ASUS Touchpad Launcher (x64)] (.AsusTek.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe
[MD5.1F014EA12ECB13C909DA9395E9CD3D18] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe
[MD5.C2168D98651841E2F6D7B08F3383A73C] [APT] [GlaryInitialize 5] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 5\Initialize.exe
[MD5.89B52ECB4DF86F66100D218C16025EF1] [APT] [GU5SkipUAC] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
[MD5.2780FE4E51298FB9A037231A6150ADEC] [APT] [maLivebox] (.Orange.) -- C:\Program Files (x86)\Orange\ma Livebox\maLivebox.exe
[MD5.00000000000000000000000000000000] [APT] [{47B1191E-63FE-46A8-AFCB-3B4EF2D2F790}] (...) -- E:\AOEInst.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{74730D1C-D83E-441A-8BB6-D22D8B6ACD16}] (...) -- F:\setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{897827CF-0B0A-4089-ADE2-F8845CA6D874}] (...) -- C:\Users\Bob\AppData\Roaming\mystartsearch\UninstallManager.exe (.not file.)
~ Scan Scheduled Task in 00mn 04s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (ATKWMIACPIIO) . (.ASUSTek Computer Inc. - ATK WMIACPI Utility.) - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: (cbfs3) . (.EldoS Corporation - Callback File System Driver.) - C:\Windows\system32\drivers\cbfs3.sys
O41 - Driver: (cbfs5) . (.EldoS Corporation - Callback File System Driver.) - C:\WINDOWS\system32\drivers\cbfs5.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\filecrypt.sys (FileCrypt) . (.Microsoft Corporation - Windows sandboxing and encryption filter.) - C:\Windows\System32\drivers\filecrypt.sys
O41 - Driver: C:\Windows\System32\drivers\gpuenergydrv.sys (GpuEnergyDrv) . (.Microsoft Corporation - GPU Energy Kernel Driver.) - C:\Windows\System32\drivers\gpuenergydrv.sys
O41 - Driver: (GUBootStartup) . (.Glarysoft Ltd - The driver for the Startup Manager tool.) - C:\WINDOWS\system32\drivers\GUBootStartup.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbios.sys (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\drivers\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\drivers\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (sysrdb) . (.Promosoft Software Limited - Secure Folders.) - C:\Windows\system32\drivers\sysrdb.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\drivers\vwififlt.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: 7-Zip 9.30 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0930-000001000000}
O42 - Logiciel: AD Sound Recorder 5.4.5 - (.Adrosoft.) [HKLM][64Bits] -- AD Sound Recorder_is1
O42 - Logiciel: ASUS Instant Connect - (.ASUS.) [HKLM][64Bits] -- {89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}
O42 - Logiciel: ASUS Instant Key - (.ASUS.) [HKLM][64Bits] -- {D97A1B80-131F-4692-9543-E652956D8B99}
O42 - Logiciel: ASUS InstantOn - (.ASUS.) [HKLM][64Bits] -- {749F674B-2674-47E8-879C-5626A06B2A91}
O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM][64Bits] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158}
O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM][64Bits] -- {9B6239BF-4E85-4590-8D72-51E30DB1A9AA}
O42 - Logiciel: ASUS Smart Gesture - (.ASUS.) [HKLM][64Bits] -- {4D3286A6-F6AB-498A-82A4-E4F040529F3D}
O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D}
O42 - Logiciel: ASUS Tutor - (.ASUS.) [HKLM][64Bits] -- {58172D66-2F69-4215-9AEC-ED8196023736}
O42 - Logiciel: ASUS USB Charger Plus - (.ASUS.) [HKLM][64Bits] -- {A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}
O42 - Logiciel: ASUS Video Magic - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: ASUS Video Magic - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: ASUS WebStorage Sync Agent - (.ASUS Cloud Corporation.) [HKLM][64Bits] -- ASUS WebStorage
O42 - Logiciel: ASUSDVD - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: ASUSDVD - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {34927EBC-98D4-4D53-98BE-510DF5999F50}
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100}
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Photoshop 7.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop 7.0
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Age of Empires III - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{70F8B183-99EB-4304-BA35-080E2DFFD2A3}
O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM][64Bits] -- AmUStor
O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM][64Bits] -- Asus Vibe2.0
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: Audacity 2.0.5 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1
O42 - Logiciel: Bitcasa version 1.1.6.18 - (.Bitcasa Inc..) [HKLM][64Bits] -- {EDA09459-AD7D-4434-BA0C-647F6703EA12}_is1
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CD-LabelPrint - (.Pas de propriétaire.) [HKLM][64Bits] -- MediaNavigation.CDLabelPrint
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: CDex - Open Source Digital Audio CD Extractor - (.Georgy Berdyshev.) [HKLM][64Bits] -- CDex
O42 - Logiciel: Canon Easy-PhotoPrint EX - (.Pas de propriétaire.) [HKLM][64Bits] -- Easy-PhotoPrint EX
O42 - Logiciel: Canon Easy-PhotoPrint Pro - (.Pas de propriétaire.) [HKLM][64Bits] -- Easy-PhotoPrint Pro
O42 - Logiciel: Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data - (.Pas de propriétaire.) [HKLM][64Bits] -- Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data
O42 - Logiciel: Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data - (.Pas de propriétaire.) [HKLM][64Bits] -- Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data
O42 - Logiciel: Canon MG6100 series MP Drivers - (.Pas de propriétaire.) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6100_series
O42 - Logiciel: Canon MP Navigator EX 4.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- MP Navigator EX 4.0
O42 - Logiciel: Canon My Printer - (.Pas de propriétaire.) [HKLM][64Bits] -- CanonMyPrinter
O42 - Logiciel: Canon Solution Menu EX - (.Pas de propriétaire.) [HKLM][64Bits] -- CanonSolutionMenuEX
O42 - Logiciel: ConvertHelper 2.2 - (.DownloadHelper.) [HKLM][64Bits] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1
O42 - Logiciel: ConvertHelper 3.0 - (.DownloadHelper.) [HKLM][64Bits] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1
O42 - Logiciel: CyberLink MediaEspresso 6.5 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink MediaEspresso 6.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DVD Flick 1.3.0.7 - (.Dennis Meuwissen.) [HKLM][64Bits] -- DVD Flick_is1
O42 - Logiciel: ELAN Touchpad 15.8.4.3_X64_WHQL - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: EasyPhotoTools 2.2.0.0 - (.Pas de propriétaire.) [HKLM][64Bits] -- {B1C43EB9-F687-42B9-84F8-E88F41F0BE0E}_is1
O42 - Logiciel: Enregistrement utilisateur de Canon MG6100 series - (.Pas de propriétaire.) [HKLM][64Bits] -- Enregistrement utilisateur de Canon MG6100 series
O42 - Logiciel: Free Sound Recorder v9.7.1 - (.Copyright(C) 2005-2014 FreeSoundRecorder Technologies, Inc..) [HKLM][64Bits] -- Free Sound Recorder_is1
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B}
O42 - Logiciel: Gentibus CD 1.51 - (.Luc DI FELICE.) [HKLM][64Bits] -- Gentibus CD_is1
O42 - Logiciel: Glary Utilities 5.16 - (.Glarysoft Ltd.) [HKLM][64Bits] -- Glary Utilities 5
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology - (.Motorola Solutions, Inc.) [HKLM][64Bits] -- {7854AA22-A2F0-4F29-A2E9-D0C5A2B685E7}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel(R) WiDi - (.Intel Corporation.) [HKLM][64Bits] -- {EDBA2433-0910-4C72-8C5B-8FEDAE3EF18E}
O42 - Logiciel: Intel® PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM][64Bits] -- {D61F48DA-627B-404E-9315-32A651B18B64}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}
O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79}
O42 - Logiciel: LAME v3.99.3 (for Windows) - (.Pas de propriétaire.) [HKLM][64Bits] -- LAME_is1
O42 - Logiciel: Logiciel Intel® PROSet/Wireless - (.Intel Corporation.) [HKLM][64Bits] -- {c9967fbd-e3c3-4ed0-992a-5b33260f2944}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Media Convert Master 8.1.1.15 - (.Pas de propriétaire.) [HKLM][64Bits] -- Media Convert Master_is1
O42 - Logiciel: MediaMonkey 4.1 - (.Ventis Media Inc..) [HKLM][64Bits] -- MediaMonkey_is1
O42 - Logiciel: Microsoft Age of Empires Gold - (.Pas de propriétaire.) [HKLM][64Bits] -- Age of Empires Gold 1.0
O42 - Logiciel: Microsoft Age of Empires II - (.Pas de propriétaire.) [HKLM][64Bits] -- Age of Empires 2.0
O42 - Logiciel: Microsoft Age of Empires II : The Conquerors Expansion - (.Pas de propriétaire.) [HKLM][64Bits] -- Age of Empires II: The Conquerors Expansion 1.0
O42 - Logiciel: Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_ - (.Microsoft Corporation.) [HKLM][64Bits] -- {E9F0BCD8-6BD5-1ED7-EDA3-9FCF2A478AA1}
O42 - Logiciel: Microsoft Excel 97 - (.Pas de propriétaire.) [HKLM][64Bits] -- Excel
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}
O42 - Logiciel: Microsoft Office - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-0070-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM][64Bits] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D8E6291-B0D5-35EC-8441-6616F567A0F7}
O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
O42 - Logiciel: Microsoft Word 97 - (.Pas de propriétaire.) [HKLM][64Bits] -- Word8.0
O42 - Logiciel: Microsoft Works 6.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {75DEB69B-4B6C-11D4-B0CE-00AA00BCC218}
O42 - Logiciel: MotoHelper MergeModules - (.Motorola.) [HKLM][64Bits] -- {6F3D2F66-F050-45E3-BEB1-6523FE6D6690}
O42 - Logiciel: Motorola Device Manager - (.Motorola Mobility.) [HKLM][64Bits] -- {28DB8373-C1BB-444F-A427-A55585A12ED7}
O42 - Logiciel: Motorola Device Software Update - (.Motorola Mobility.) [HKLM][64Bits] -- {894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}
O42 - Logiciel: Motorola Mobile Drivers Installation 6.3.0 - (.Motorola Mobility LLC.) [HKLM][64Bits] -- {759E6A2F-1F01-45EF-A0C4-22F1B56CB975}
O42 - Logiciel: Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {21764A96-6748-4B83-89E7-7A5063BF156C}
O42 - Logiciel: Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {DD67BE4B-7E62-4215-AFA3-F123A800A389}
O42 - Logiciel: Mozilla Firefox 40.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 40.0.2 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mp3tag v2.39 - (.Florian Heidenreich.) [HKLM][64Bits] -- Mp3tag
O42 - Logiciel: NVIDIA HD Audio Driver 1.3.18.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}
O42 - Logiciel: NVIDIA PhysX System Software 9.12.0613 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA Pilote graphique 331.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: OVTScanner_Vista64 - (.OVT.) [HKLM][64Bits] -- {AE09704D-9051-4C25-B940-77F889F0C93F}
O42 - Logiciel: Orange update - (.Orange.) [HKLM][64Bits] -- OrangeUpdateManager
O42 - Logiciel: Package de pilotes Windows - ASUS (ATP) Mouse (06/17/2015 1.0.0.262) - (.ASUS.) [HKLM][64Bits] -- 14588A15B66655338DBCC021FFA81E31DC281859
O42 - Logiciel: Package de pilotes Windows - ASUS (ATP) Mouse (10/29/2012 1.0.0.148) - (.ASUS.) [HKLM][64Bits] -- C01F56FBD9B141017E63E2A1A141E59934D4DC67
O42 - Logiciel: Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {3751BF9B-5F23-4976-AA62-1BF4D791DCFE}
O42 - Logiciel: Photo Gallery - (.Microsoft Corporation.) [HKLM][64Bits] -- {07AAB66E-4718-422D-9218-4AFB3C922A71}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054}
O42 - Logiciel: Simple MP3 Tag Editor version 1.3 - (.Pas de propriétaire.) [HKLM][64Bits] -- Simple MP3 Tag Editor_is1
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: WinFF 1.5.3 (Codename EMMA) - (.WinFF.org.) [HKLM][64Bits] -- WinFF_is1
O42 - Logiciel: WinHTTrack Website Copier 3.47-27 (x64) - (.HTTrack.) [HKLM][64Bits] -- WinHTTrack Website Copier_is1
O42 - Logiciel: WinHTTrack Website Copier 3.47-27 - (.HTTrack.) [HKLM][64Bits] -- WinHTTrack Website Copier_is1
O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {B99F248C-B4B3-4D61-9FFC-AE59A1F13723}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {41C61308-6CFD-4D54-AB6A-7136ED08A18E}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {659CB81C-B54E-4DF1-B618-F35777393A54}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM][64Bits] -- {25058321-C33E-496B-8915-6FD64D362CAF}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {91EA0E43-82A0-4DE0-A46C-C7FCC4D989E6}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {B775C26B-EAA8-4A11-ACBF-76E52DF6B805}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {98029AF9-D2BD-439A-8ED7-AA60E232A49D}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {E703613B-BDAB-433E-A66A-DE0263E3D35D}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM][64Bits] -- {CDC1AB00-01FF-4FC7-816A-16C67F0923C0}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM][64Bits] -- {D1893000-EA77-493C-8DDD-E262436E959B}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {00F9DB8C-65D7-4D47-AB5F-F698EE38580D}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {33B992ED-B59B-4E25-9F3F-CF2D79BBA914}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {04BE4035-3C8E-4B48-BFB8-1655849C0C8B}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {714E162E-CD4F-4F1B-8302-7F5179409C25}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {E21F3367-B1D2-4FFE-B8C2-6E46E0663560}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {020C6D65-955A-4F76-882A-EC320CAF0103}
O42 - Logiciel: XnView 2.22 - (.Gougelet Pierre-e.) [HKLM][64Bits] -- XnView_is1
O42 - Logiciel: calibre - (.Kovid Goyal.) [HKLM][64Bits] -- {FEFD4E74-85EE-4BA6-AD02-E0F99BC3F51E}
O42 - Logiciel: ma Livebox - (.Orange.) [HKLM][64Bits] -- ma Livebox
---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\ASUS]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Adobe]
[HKCU\Software\Adrosoft]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Borland]
[HKCU\Software\BugSplat]
[HKCU\Software\CDDB]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\CanonBJ]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DivXNetworks]
[HKCU\Software\ECAREME]
[HKCU\Software\EasyPhotoTools]
[HKCU\Software\Firaxis]
[HKCU\Software\Florian Heidenreich]
[HKCU\Software\FreeCDRIP]
[HKCU\Software\Freemake]
[HKCU\Software\Glarysoft]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\Ironhide Game Studio]
[HKCU\Software\JEDI-VCL]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lake]
[HKCU\Software\Leadertech]
[HKCU\Software\Macromedia]
[HKCU\Software\MarineCat]
[HKCU\Software\MediaMonkey]
[HKCU\Software\MediaNavigation]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Novell]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Polipo]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Screenshoter]
[HKCU\Software\Sysinternals]
[HKCU\Software\T.Aragon]
[HKCU\Software\TeleCharger]
[HKCU\Software\The Fullbright Company]
[HKCU\Software\Trolltech]
[HKCU\Software\Unity]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VOS]
[HKCU\Software\Valve]
[HKCU\Software\Waves Audio]
[HKCU\Software\WinHTTrack Website Copier]
[HKCU\Software\Winamp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\bitcasa]
[HKCU\Software\geissplugin]
[HKLM\Software\7-Zip]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Agere]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Bitcasa]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dell]
[HKLM\Software\Dolby]
[HKLM\Software\ECAREME]
[HKLM\Software\EldoS]
[HKLM\Software\GEAR Software]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\LSI]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\Motorola Mobility]
[HKLM\Software\Motorola]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NCH Swift Sound]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Partner]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\VsMntNtf]
[HKLM\Software\Waves Audio]
[HKLM\Software\WidCommUpdate]
[HKLM\Software\WinHTTrack Website Copier]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ASIO]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\AsLdr]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Canneverbe Limited]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\DownloadHelper]
[HKLM\Software\Wow6432Node\ECAREME]
[HKLM\Software\Wow6432Node\FlashIntegro]
[HKLM\Software\Wow6432Node\Florian Heidenreich]
[HKLM\Software\Wow6432Node\Freemake]
[HKLM\Software\Wow6432Node\GlarySoft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Lame For Audacity]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\Motorola Mobility]
[HKLM\Software\Wow6432Node\Motorola]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Oracle]
[HKLM\Software\Wow6432Node\Orange]
[HKLM\Software\Wow6432Node\PocketSoft]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\T.Aragon]
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WinHTTrack Website Copier]
[HKLM\Software\Wow6432Node\WinPcap]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\XnView]
[HKLM\Software\Wow6432Node\calibre]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 16/12/2013 - 19:59:43 - [3,384] ----D C:\Program Files (x86)\AD Sound Recorder
O43 - CFD: 07/06/2015 - 22:00:29 - [318,740] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 04/11/2012 - 01:39:23 - [0,131] ----D C:\Program Files (x86)\AmIcoSingLun
O43 - CFD: 05/08/2015 - 17:28:31 - [296,393] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 07/08/2014 - 21:42:29 - [45,851] ----D C:\Program Files (x86)\Audacity
O43 - CFD: 06/02/2013 - 15:56:32 - [0] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 24/10/2013 - 21:26:45 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 05/04/2014 - 09:06:53 - [143,539] ----D C:\Program Files (x86)\Calibre2
O43 - CFD: 03/02/2013 - 14:42:30 - [389,937] ----D C:\Program Files (x86)\Canon
O43 - CFD: 22/08/2014 - 09:07:06 - [13,497] ----D C:\Program Files (x86)\CDBurnerXP
O43 - CFD: 05/01/2014 - 17:33:20 - [10,213] ----D C:\Program Files (x86)\CDex
O43 - CFD: 21/11/2013 - 21:59:48 - [0] ----D C:\Program Files (x86)\Cisco
O43 - CFD: 09/08/2015 - 17:38:23 - [340,011] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 26/02/2013 - 10:12:50 - [29,417] ----D C:\Program Files (x86)\ConvertHelper
O43 - CFD: 04/11/2012 - 01:48:21 - [954,429] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 20/06/2014 - 17:02:10 - [6,264] ----D C:\Program Files (x86)\Domination
O43 - CFD: 29/09/2014 - 12:17:32 - [42,823] ----D C:\Program Files (x86)\DVD Flick
O43 - CFD: 01/09/2013 - 12:17:26 - [30,561] ----D C:\Program Files (x86)\EasyPhotoTools
O43 - CFD: 04/12/2013 - 21:01:15 - [15,080] ----D C:\Program Files (x86)\Free Sound Recorder
O43 - CFD: 09/08/2015 - 17:38:08 - [0] ----D C:\Program Files (x86)\Freemake
O43 - CFD: 13/11/2013 - 16:30:08 - [3,375] ----D C:\Program Files (x86)\Gentibus CD
O43 - CFD: 24/08/2015 - 14:20:57 - [37,731] ----D C:\Program Files (x86)\Glary Utilities 5
O43 - CFD: 28/09/2014 - 12:10:59 - [0] ----D C:\Program Files (x86)\Glarysoft
O43 - CFD: 14/07/2014 - 11:58:30 - [0] ----D C:\Program Files (x86)\Google
O43 - CFD: 07/08/2014 - 21:50:20 - [107,959] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 05/08/2015 - 17:28:34 - [228,953] ----D C:\Program Files (x86)\Intel
O43 - CFD: 06/08/2015 - 10:04:06 - [2,066] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 24/01/2015 - 10:59:45 - [135,789] ----D C:\Program Files (x86)\Java
O43 - CFD: 10/02/2013 - 22:56:15 - [1,540] ----D C:\Program Files (x86)\Lame For Audacity
O43 - CFD: 25/07/2015 - 07:51:16 - [53,427] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 02/03/2014 - 17:35:52 - [23,776] ----D C:\Program Files (x86)\Media Convert Master
O43 - CFD: 25/12/2014 - 16:02:11 - [51,327] ----D C:\Program Files (x86)\MediaMonkey
O43 - CFD: 17/09/2013 - 17:10:30 - [-1592,861] ----D C:\Program Files (x86)\Microsoft Games
O43 - CFD: 22/07/2013 - 17:18:56 - [8,929] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 03/02/2013 - 15:08:14 - [46,380] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 28/09/2013 - 20:22:55 - [5,397] ----D C:\Program Files (x86)\Microsoft SkyDrive
O43 - CFD: 28/09/2013 - 20:28:50 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 31/12/2012 - 22:42:46 - [23,644] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 10/07/2015 - 13:04:22 - [0,023] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 13/06/2014 - 08:48:33 - [0,194] ----D C:\Program Files (x86)\Motorola
O43 - CFD: 13/06/2014 - 08:48:38 - [8,128] ----D C:\Program Files (x86)\Motorola Mobility
O43 - CFD: 24/08/2015 - 11:02:20 - [85,324] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 24/08/2015 - 11:02:20 - [0,260] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 28/03/2013 - 15:45:48 - [1,084] ----D C:\Program Files (x86)\MP3Gain
O43 - CFD: 25/12/2014 - 16:18:50 - [5,498] ----D C:\Program Files (x86)\Mp3tag
O43 - CFD: 05/08/2015 - 18:05:19 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 13/06/2014 - 08:48:19 - [0,147] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 05/08/2015 - 17:28:36 - [114,413] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 07/05/2015 - 21:02:34 - [166,182] ----D C:\Program Files (x86)\Orange
O43 - CFD: 30/05/2013 - 14:40:42 - [0,000] ----D C:\Program Files (x86)\OVT
O43 - CFD: 04/11/2012 - 01:36:07 - [3,774] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 05/08/2015 - 18:05:20 - [36,669] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 13/01/2014 - 09:59:22 - [1,926] ----D C:\Program Files (x86)\Sheva Software
O43 - CFD: 04/01/2013 - 22:10:18 - [1,605] ----D C:\Program Files (x86)\Simple MP3 Tag Editor
O43 - CFD: 04/11/2012 - 01:36:23 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 16/02/2013 - 18:39:03 - [119,033] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 27/12/2012 - 13:59:46 - [18,256] ----D C:\Program Files (x86)\Winamp
O43 - CFD: 10/07/2015 - 18:23:55 - [1,380] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 24/06/2014 - 23:48:01 - [144,318] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 05/08/2015 - 17:28:36 - [5,685] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 10/07/2015 - 18:23:55 - [3,188] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 10/07/2015 - 13:04:26 - [0,218] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 10/07/2015 - 13:04:22 - [7,222] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 10/07/2015 - 18:23:55 - [5,230] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 10/07/2015 - 13:04:26 - [0,218] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 10/07/2015 - 13:04:22 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 10/07/2015 - 13:04:22 - [2,172] -S--D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 05/04/2014 - 21:30:25 - [53,696] ----D C:\Program Files (x86)\WinFF
O43 - CFD: 11/01/2014 - 11:21:46 - [11,524] ----D C:\Program Files (x86)\WinHTTrack
O43 - CFD: 28/06/2014 - 18:00:39 - [16,796] ----D C:\Program Files (x86)\XnView
O43 - CFD: 24/08/2015 - 19:51:17 - [10,021] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 02/03/2014 - 17:11:40 - [0,002] ----D C:\Program Files (x86)\ZHPFix
O43 - CFD: 07/06/2015 - 22:00:31 - [56,231] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 16/05/2015 - 09:05:19 - [45,079] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 06/02/2013 - 15:56:32 - [0] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 25/06/2014 - 12:07:55 - [7,618] ----D C:\Program Files (x86)\Common Files\FlashIntegro
O43 - CFD: 29/10/2013 - 20:12:18 - [6,917] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 05/08/2015 - 17:28:32 - [115,156] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 24/01/2015 - 11:00:33 - [2,052] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 05/08/2015 - 17:28:32 - [91,784] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 12/06/2014 - 23:53:46 - [0,008] ----D C:\Program Files (x86)\Common Files\Motorola Shared
O43 - CFD: 27/09/2013 - 16:30:44 - [0,675] ----D C:\Program Files (x86)\Common Files\MSSoap
O43 - CFD: 04/11/2012 - 01:27:57 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 27/12/2012 - 13:59:28 - [4,559] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 10/07/2015 - 13:04:26 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 12/06/2014 - 08:19:27 - [0,518] ----D C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 05/08/2015 - 17:28:33 - [9,227] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 28/09/2013 - 20:20:55 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 07/06/2015 - 22:00:02 - [195,360] ----D C:\ProgramData\Adobe
O43 - CFD: 17/09/2013 - 17:27:34 - [0,000] ----D C:\ProgramData\Age of Empires 3
O43 - CFD: 23/06/2014 - 21:13:12 - [2,509] ----D C:\ProgramData\AmUStor
O43 - CFD: 03/05/2015 - 14:57:29 - [2,558] ----D C:\ProgramData\Apple
O43 - CFD: 03/05/2015 - 14:39:51 - [0] ----D C:\ProgramData\Apple Computer
O43 - CFD: 10/07/2015 - 14:21:38 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 09/03/2015 - 23:14:37 - [0,004] ----D C:\ProgramData\ASUS
O43 - CFD: 24/08/2015 - 11:07:12 - [0,003] ----D C:\ProgramData\ASUS Smart Gesture
O43 - CFD: 23/06/2014 - 21:13:12 - [0,002] ----D C:\ProgramData\ASUS WebStorage
O43 - CFD: 17/08/2012 - 02:52:28 - [0,012] ----D C:\ProgramData\ASUSLogos
O43 - CFD: 23/06/2014 - 21:13:12 - [0,767] ----D C:\ProgramData\ASUSVibe
O43 - CFD: 06/02/2013 - 15:54:41 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 20/06/2014 - 11:19:37 - [1,475] R-H-D C:\ProgramData\Bureau
O43 - CFD: 20/06/2014 - 09:43:25 - [0] ----D C:\ProgramData\BVRP Software
O43 - CFD: 01/09/2013 - 12:50:16 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 23/06/2014 - 20:58:42 - [21,208] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 03/02/2013 - 14:45:53 - [0] --H-D C:\ProgramData\CanonEPP
O43 - CFD: 23/06/2014 - 21:13:12 - [0,000] --H-D C:\ProgramData\CanonIJEGV
O43 - CFD: 03/02/2013 - 14:45:53 - [0] --H-D C:\ProgramData\CanonIJEPPEX2
O43 - CFD: 03/02/2013 - 14:42:32 - [0,003] ----D C:\ProgramData\CanonIJMSetup
O43 - CFD: 23/06/2014 - 21:13:12 - [0,002] --H-D C:\ProgramData\CanonIJScan
O43 - CFD: 03/02/2013 - 14:40:45 - [0,065] ----D C:\ProgramData\CanonIJWSpt
O43 - CFD: 23/06/2014 - 21:13:25 - [4,688] ----D C:\ProgramData\ChangeFolderView
O43 - CFD: 10/07/2015 - 13:04:22 - [0] ----D C:\ProgramData\Comms
O43 - CFD: 23/06/2014 - 21:13:12 - [0,168] ----D C:\ProgramData\CyberLink
O43 - CFD: 10/07/2015 - 14:21:38 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 10/07/2015 - 14:21:38 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 03/05/2015 - 14:56:46 - [0,007] ----D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 23/06/2014 - 21:13:12 - [0,585] ----D C:\ProgramData\FolderView
O43 - CFD: 09/08/2015 - 17:38:10 - [0] ----D C:\ProgramData\Freemake
O43 - CFD: 28/09/2014 - 12:10:47 - [0] ----D C:\ProgramData\GlarySoft
O43 - CFD: 05/08/2015 - 17:28:39 - [0,185] ----D C:\ProgramData\Intel
O43 - CFD: 23/06/2014 - 20:58:45 - [0,076] ----D C:\ProgramData\Intel.sav
O43 - CFD: 24/06/2014 - 22:34:38 - [147,406] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 25/12/2014 - 16:02:04 - [0,558] ----D C:\ProgramData\MediaMonkey
O43 - CFD: 20/06/2014 - 11:19:37 - [0,322] R---D C:\ProgramData\Menu Démarrer
O43 - CFD: 05/08/2015 - 17:28:49 - [-1543,144] -S--D C:\ProgramData\Microsoft
O43 - CFD: 28/09/2013 - 20:22:45 - [0] ----D C:\ProgramData\Microsoft OneDrive
O43 - CFD: 20/06/2014 - 11:19:37 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 25/12/2012 - 21:11:43 - [0,028] ----D C:\ProgramData\Mozilla
O43 - CFD: 05/08/2015 - 17:28:49 - [89,291] ----D C:\ProgramData\NVIDIA
O43 - CFD: 05/08/2015 - 17:28:49 - [4,144] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 24/01/2015 - 10:59:47 - [67,709] ----D C:\ProgramData\Oracle
O43 - CFD: 19/06/2014 - 11:39:05 - [3,027] ----D C:\ProgramData\Orange
O43 - CFD: 23/06/2014 - 21:13:16 - [0,002] ----D C:\ProgramData\P4G
O43 - CFD: 07/01/2014 - 13:35:27 - [101,103] ----D C:\ProgramData\Package Cache
O43 - CFD: 05/08/2015 - 17:28:50 - [0,041] ----D C:\ProgramData\PRICache
O43 - CFD: 10/07/2015 - 18:28:36 - [0,001] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 04/11/2012 - 01:37:40 - [0] ----D C:\ProgramData\Roaming
O43 - CFD: 19/05/2015 - 21:15:09 - [0,143] ----D C:\ProgramData\RogueKiller
O43 - CFD: 09/08/2015 - 21:44:03 - [50,996] ----D C:\ProgramData\SetupTPDriver
O43 - CFD: 12/06/2014 - 13:47:09 - [0] ----D C:\ProgramData\SketchUp
O43 - CFD: 10/07/2015 - 13:04:22 - [0] ----D C:\ProgramData\SoftwareDistribution
O43 - CFD: 10/07/2015 - 14:21:38 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 30/12/2012 - 17:39:00 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 14/02/2014 - 21:04:16 - [0,838] ---AD C:\ProgramData\Temp
O43 - CFD: 10/07/2015 - 14:21:38 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 01/07/2013 - 11:53:41 - [0,049] ----D C:\ProgramData\TinyWall
O43 - CFD: 25/12/2014 - 16:15:16 - [0,008] ----D C:\ProgramData\TuneUpMedia
O43 - CFD: 04/11/2012 - 02:07:33 - [0,000] ----D C:\ProgramData\USBChargerPlus
O43 - CFD: 10/07/2015 - 14:22:45 - [0,004] ----D C:\ProgramData\USOPrivate
O43 - CFD: 10/07/2015 - 14:22:45 - [1,918] ----D C:\ProgramData\USOShared
O43 - CFD: 20/01/2015 - 14:16:19 - [3,646] ----D C:\ProgramData\{28D5D3C0-9147-4bb7-B2D0-453118720FE3}
O43 - CFD: 16/12/2013 - 19:59:42 - [0] ----D C:\Users\Bob\AppData\Roaming\AD Sound Recorder
O43 - CFD: 12/06/2015 - 21:16:58 - [36,749] ----D C:\Users\Bob\AppData\Roaming\Adobe
O43 - CFD: 03/05/2015 - 14:43:02 - [0,183] ----D C:\Users\Bob\AppData\Roaming\Apple Computer
O43 - CFD: 23/02/2013 - 18:18:28 - [0,003] ----D C:\Users\Bob\AppData\Roaming\ASUS
O43 - CFD: 24/12/2012 - 02:33:59 - [0] ----D C:\Users\Bob\AppData\Roaming\ASUS WebStorage
O43 - CFD: 09/08/2015 - 17:46:38 - [0,005] ----D C:\Users\Bob\AppData\Roaming\Audacity
O43 - CFD: 06/02/2013 - 15:54:36 - [0,069] ----D C:\Users\Bob\AppData\Roaming\AVS4YOU
O43 - CFD: 22/08/2014 - 23:26:40 - [24,889] ----D C:\Users\Bob\AppData\Roaming\Bitcasa
O43 - CFD: 08/08/2013 - 09:00:44 - [7,087] ----D C:\Users\Bob\AppData\Roaming\Box
O43 - CFD: 05/04/2014 - 09:09:25 - [0,338] ----D C:\Users\Bob\AppData\Roaming\calibre
O43 - CFD: 01/09/2013 - 12:50:16 - [0,002] ----D C:\Users\Bob\AppData\Roaming\Canneverbe Limited
O43 - CFD: 29/04/2013 - 16:21:16 - [0,017] ----D C:\Users\Bob\AppData\Roaming\Canon
O43 - CFD: 22/08/2014 - 09:12:45 - [12,651] ----D C:\Users\Bob\AppData\Roaming\com.bitcasa.Bitcasa
O43 - CFD: 24/06/2014 - 21:45:19 - [0,555] ----D C:\Users\Bob\AppData\Roaming\CyberLink
O43 - CFD: 15/06/2014 - 16:16:41 - [6,873] ----D C:\Users\Bob\AppData\Roaming\DarkSoulsII
O43 - CFD: 03/08/2014 - 08:51:24 - [0,010] ----D C:\Users\Bob\AppData\Roaming\DiskDefrag
O43 - CFD: 12/06/2015 - 12:08:58 - [0,004] ----D C:\Users\Bob\AppData\Roaming\DVD Flick
O43 - CFD: 08/10/2013 - 22:57:53 - [0,000] ----D C:\Users\Bob\AppData\Roaming\dvdcss
O43 - CFD: 15/08/2013 - 16:59:26 - [0] ----D C:\Users\Bob\AppData\Roaming\FireShot
O43 - CFD: 25/10/2013 - 09:11:04 - [0,009] ----D C:\Users\Bob\AppData\Roaming\fr.orange.assistancelivebox
O43 - CFD: 04/12/2013 - 21:01:18 - [0,001] ----D C:\Users\Bob\AppData\Roaming\Free Sound Recorder
O43 - CFD: 05/01/2014 - 17:26:49 - [0,000] ----D C:\Users\Bob\AppData\Roaming\FreeCDRipper
O43 - CFD: 05/10/2014 - 14:12:35 - [0,174] ----D C:\Users\Bob\AppData\Roaming\GlarySoft
O43 - CFD: 20/06/2014 - 11:23:30 - [0] ----D C:\Users\Bob\AppData\Roaming\Identities
O43 - CFD: 24/12/2012 - 02:30:07 - [0,002] ----D C:\Users\Bob\AppData\Roaming\Intel
O43 - CFD: 30/12/2013 - 17:38:04 - [0,039] ----D C:\Users\Bob\AppData\Roaming\Leadertech
O43 - CFD: 09/04/2015 - 18:08:53 - [0,041] ----D C:\Users\Bob\AppData\Roaming\Logishrd
O43 - CFD: 09/04/2015 - 18:08:38 - [0] ----D C:\Users\Bob\AppData\Roaming\Logitech
O43 - CFD: 25/12/2012 - 01:56:47 - [0,163] ----D C:\Users\Bob\AppData\Roaming\Macromedia
O43 - CFD: 09/08/2015 - 16:33:36 - [0,355] ----D C:\Users\Bob\AppData\Roaming\MediaMonkey
O43 - CFD: 05/08/2015 - 17:43:12 - [18,535] -S--D C:\Users\Bob\AppData\Roaming\Microsoft
O43 - CFD: 13/06/2014 - 08:47:25 - [0,000] ----D C:\Users\Bob\AppData\Roaming\Motorola
O43 - CFD: 13/06/2014 - 08:48:44 - [0,000] ----D C:\Users\Bob\AppData\Roaming\Motorola Mobility
O43 - CFD: 19/06/2014 - 11:54:52 - [215,209] ----D C:\Users\Bob\AppData\Roaming\Mozilla
O43 - CFD: 01/04/2014 - 19:49:44 - [0,055] ----D C:\Users\Bob\AppData\Roaming\Mp3tag
O43 - CFD: 12/06/2014 - 10:45:04 - [0,020] ----D C:\Users\Bob\AppData\Roaming\NVIDIA
O43 - CFD: 25/12/2012 - 21:45:47 - [12,376] ----D C:\Users\Bob\AppData\Roaming\OpenOffice.org
O43 - CFD: 24/09/2013 - 17:18:38 - [0,001] ----D C:\Users\Bob\AppData\Roaming\Python-Eggs
O43 - CFD: 09/08/2015 - 17:35:53 - [0] ----D C:\Users\Bob\AppData\Roaming\RPEng
O43 - CFD: 12/06/2014 - 13:48:04 - [2,130] ----D C:\Users\Bob\AppData\Roaming\SketchUp
O43 - CFD: 02/01/2013 - 11:36:42 - [0,008] ----D C:\Users\Bob\AppData\Roaming\Template
O43 - CFD: 01/07/2013 - 11:53:42 - [0,001] ----D C:\Users\Bob\AppData\Roaming\TinyWall
O43 - CFD: 25/12/2014 - 16:16:20 - [0] ----D C:\Users\Bob\AppData\Roaming\TuneUpMedia
O43 - CFD: 24/06/2014 - 22:08:19 - [0,006] ----D C:\Users\Bob\AppData\Roaming\VideoEditor
O43 - CFD: 23/08/2015 - 18:12:31 - [4,589] ----D C:\Users\Bob\AppData\Roaming\vlc
O43 - CFD: 27/12/2012 - 19:04:56 - [0] ----D C:\Users\Bob\AppData\Roaming\Vso
O43 - CFD: 12/12/2014 - 22:54:32 - [0,576] ----D C:\Users\Bob\AppData\Roaming\Winamp
O43 - CFD: 05/04/2014 - 21:37:48 - [0,036] ----D C:\Users\Bob\AppData\Roaming\WinFF
O43 - CFD: 20/01/2015 - 12:30:55 - [0] ----D C:\Users\Bob\AppData\Roaming\WinSesame
O43 - CFD: 15/02/2014 - 18:17:24 - [0] ----D C:\Users\Bob\AppData\Roaming\Xilisoft
O43 - CFD: 24/08/2015 - 14:47:30 - [173,964] ----D C:\Users\Bob\AppData\Roaming\XnView
O43 - CFD: 12/06/2014 - 10:47:13 - [0,003] ----D C:\Users\Bob\AppData\Local\4A Games
O43 - CFD: 28/06/2015 - 07:47:05 - [19,670] ----D C:\Users\Bob\AppData\Local\Adobe
O43 - CFD: 23/09/2014 - 18:31:56 - [0] ----D C:\Users\Bob\AppData\Local\Advanced File Lock
O43 - CFD: 03/05/2015 - 14:38:47 - [0] ----D C:\Users\Bob\AppData\Local\Apple
O43 - CFD: 03/05/2015 - 14:42:36 - [2,082] ----D C:\Users\Bob\AppData\Local\Apple Computer
O43 - CFD: 05/08/2015 - 17:26:11 - [0] ----D C:\Users\Bob\AppData\Local\Application Data
O43 - CFD: 29/12/2012 - 11:59:26 - [0] ----D C:\Users\Bob\AppData\Local\Apps
O43 - CFD: 19/06/2014 - 11:39:06 - [1,311] ----D C:\Users\Bob\AppData\Local\ASUS
O43 - CFD: 26/07/2013 - 09:33:16 - [0,065] ----D C:\Users\Bob\AppData\Local\Box
O43 - CFD: 26/07/2013 - 09:33:13 - [0,268] ----D C:\Users\Bob\AppData\Local\Box Edit
O43 - CFD: 05/04/2014 - 09:07:41 - [0] ----D C:\Users\Bob\AppData\Local\calibre-cache
O43 - CFD: 15/07/2015 - 18:22:30 - [0] ----D C:\Users\Bob\AppData\Local\CEF
O43 - CFD: 05/08/2015 - 18:01:18 - [18,195] ----D C:\Users\Bob\AppData\Local\Comms
O43 - CFD: 29/07/2015 - 18:40:22 - [91,758] ----D C:\Users\Bob\AppData\Local\CrashDumps
O43 - CFD: 22/09/2013 - 19:57:46 - [0,321] ----D C:\Users\Bob\AppData\Local\Cyberlink
O43 - CFD: 19/07/2015 - 17:39:22 - [0,558] ----D C:\Users\Bob\AppData\Local\Diagnostics
O43 - CFD: 31/03/2013 - 20:56:31 - [0,010] ----D C:\Users\Bob\AppData\Local\DOSBox
O43 - CFD: 30/12/2013 - 17:39:50 - [12,016] ----D C:\Users\Bob\AppData\Local\Downloaded Installations
O43 - CFD: 21/07/2015 - 20:57:50 - [0] ----D C:\Users\Bob\AppData\Local\ElevatedDiagnostics
O43 - CFD: 09/05/2015 - 15:58:58 - [0] -SH-D C:\Users\Bob\AppData\Local\EmieBrowserModeList
O43 - CFD: 14/07/2014 - 11:58:15 - [0] -SH-D C:\Users\Bob\AppData\Local\EmieSiteList
O43 - CFD: 14/07/2014 - 11:58:15 - [0] -SH-D C:\Users\Bob\AppData\Local\EmieUserList
O43 - CFD: 14/07/2014 - 11:58:10 - [0] ----D C:\Users\Bob\AppData\Local\Google
O43 - CFD: 02/06/2015 - 08:24:18 - [0,000] ----D C:\Users\Bob\AppData\Local\GWX
O43 - CFD: 05/08/2015 - 17:26:11 - [0] ----D C:\Users\Bob\AppData\Local\Historique
O43 - CFD: 25/12/2012 - 17:06:02 - [0] ----D C:\Users\Bob\AppData\Local\Macromedia
O43 - CFD: 25/12/2014 - 16:02:20 - [0] ----D C:\Users\Bob\AppData\Local\MediaMonkey
O43 - CFD: 05/08/2015 - 18:03:18 - [435,397] ----D C:\Users\Bob\AppData\Local\Microsoft
O43 - CFD: 02/10/2013 - 09:08:06 - [343,433] ----D C:\Users\Bob\AppData\Local\Mozilla
O43 - CFD: 12/06/2014 - 13:59:06 - [0] ----D C:\Users\Bob\AppData\Local\My Games
O43 - CFD: 05/08/2015 - 23:28:37 - [0] ----D C:\Users\Bob\AppData\Local\NetworkTiles
O43 - CFD: 07/08/2015 - 15:02:40 - [143,958] ----D C:\Users\Bob\AppData\Local\Packages
O43 - CFD: 11/03/2013 - 19:40:31 - [0] ----D C:\Users\Bob\AppData\Local\Programs
O43 - CFD: 05/08/2015 - 18:01:40 - [0] ----D C:\Users\Bob\AppData\Local\Publishers
O43 - CFD: 04/12/2013 - 19:00:10 - [0,003] ----D C:\Users\Bob\AppData\Local\StreamRecorder
O43 - CFD: 24/08/2015 - 19:49:05 - [371,567] ----D C:\Users\Bob\AppData\Local\Temp
O43 - CFD: 05/08/2015 - 17:26:11 - [0] ----D C:\Users\Bob\AppData\Local\Temporary Internet Files
O43 - CFD: 05/08/2015 - 17:58:49 - [13,133] ----D C:\Users\Bob\AppData\Local\TileDataLayer
O43 - CFD: 17/01/2013 - 19:12:59 - [155,369] ----D C:\Users\Bob\AppData\Local\VirtualStore
O43 - CFD: 02/08/2014 - 18:41:08 - [0,001] ----D C:\Users\Bob\AppData\Local\WiFi Guard
O43 - CFD: 24/06/2014 - 22:48:01 - [0,035] ----D C:\Users\Bob\AppData\Local\Windows Live
O43 - CFD: 01/09/2013 - 12:14:04 - [0] ----D C:\Users\Bob\AppData\Local\Xilisoft
O43 - CFD: 05/08/2015 - 17:27:41 - [0,004] R---D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 05/08/2015 - 17:58:49 - [0,003] R---D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 17/08/2015 - 17:50:54 - [0,000] R---D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 05/08/2015 - 17:35:14 - [0,002] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS Video Magic
O43 - CFD: 05/08/2015 - 17:35:14 - [0,001] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HTML Editor
O43 - CFD: 10/07/2015 - 13:04:26 - [0,000] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 28/03/2013 - 15:43:02 - [0] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MP3Gain
O43 - CFD: 05/08/2015 - 17:27:42 - [0,003] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orange
O43 - CFD: 17/08/2015 - 17:50:54 - [0,000] R---D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 05/08/2015 - 17:27:42 - [0,007] R---D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/07/2015 - 13:04:45 - [0,007] RS--D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 05/08/2015 - 17:35:14 - [0,000] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinSesame
O43 - CFD: 05/08/2015 - 17:35:14 - [0,000] ----D C:\Users\Bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XeroBank
~ Scan Program Folder in 02mn 09s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.038356387332650843BCB352BB89A101] - 24/08/2015 - 18:50:12 ---A- . (...) -- C:\Windows\WindowsUpdate.log [275]
O44 - LFC:[MD5.AEFC925F8757E7ED214A1D3A82307495] - 24/08/2015 - 18:47:34 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.0C6EE700DA49C9D96588AB03F74F15E6] - 24/08/2015 - 10:02:20 ---A- . (...) -- C:\Windows\PFRO.log [14848]
O44 - LFC:[MD5.4806CD690A16850F1D2B9F07B9ECBFE0] - 19/08/2015 - 09:10:28 -SHA- . (...) -- C:\Windows\SysNative\sysrdbsr.dat [15372]
O44 - LFC:[MD5.04D694D2E29F232070825534D71E64E6] - 17/08/2015 - 16:49:15 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [256376]
O44 - LFC:[MD5.E0CB36D5D98A097DF001F67D13AF12EC] - 17/08/2015 - 13:59:30 . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\PerfStringBackup.INI [64000]]]]]]
O44 - LFC:[MD5.7742B1CF4E85D648642DB6EA175E6626] - 17/08/2015 - 13:59:30 . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\perfc009.dat [64000]]
O44 - LFC:[MD5.3A367847E99F2AB6978962113D5AA1F8] - 17/08/2015 - 13:59:30 . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\perfc00C.dat [64000]]]
O44 - LFC:[MD5.A1DB631862AA485182D0F35911A69441] - 17/08/2015 - 13:59:30 . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\perfh009.dat [64000]]]]
O44 - LFC:[MD5.7DD59FE5C0930C1937D4CCB14256F380] - 17/08/2015 - 13:59:30 . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\perfh00C.dat [64000]]]]]
O44 - LFC:[MD5.E0CB36D5D98A097DF001F67D13AF12EC] - 17/08/2015 - 13:59:30 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1839260]
O44 - LFC:[MD5.7742B1CF4E85D648642DB6EA175E6626] - 17/08/2015 - 13:59:30 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [138162]
O44 - LFC:[MD5.3A367847E99F2AB6978962113D5AA1F8] - 17/08/2015 - 13:59:30 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [154350]
O44 - LFC:[MD5.A1DB631862AA485182D0F35911A69441] - 17/08/2015 - 13:59:30 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [731332]
O44 - LFC:[MD5.7DD59FE5C0930C1937D4CCB14256F380] - 17/08/2015 - 13:59:30 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [821020]
O44 - LFC:[MD5.E283DE7B5BB438BE4CCD393DA582A5D2] - 11/08/2015 - 10:14:02 ---A- . (...) -- C:\Windows\SysNative\diagtrack_wininternal.dll [404480]
O44 - LFC:[MD5.2C7B2FD825A8AF0A1338D86B5AFA4343] - 11/08/2015 - 10:13:42 ---A- . (...) -- C:\Windows\SysNative\diagtrack_win.dll [413184]
O44 - LFC:[MD5.A70A997B88EAEE0E898DA5773045AFF1] - 11/08/2015 - 10:11:40 ---A- . (...) -- C:\Windows\SysNative\InputService.dll [2446336]
O44 - LFC:[MD5.A70A997B88EAEE0E898DA5773045AFF1] - 11/08/2015 - 10:11:40 ---A- . (...) -- C:\Windows\System32\InputService.dll [2446336]
O44 - LFC:[MD5.81C4B217B93C6CF8953C4845B0C9B405] - 11/08/2015 - 10:10:47 ---A- . (...) -- C:\Windows\SysNative\TextInputFramework.dll [293376]
O44 - LFC:[MD5.81C4B217B93C6CF8953C4845B0C9B405] - 11/08/2015 - 10:10:47 ---A- . (...) -- C:\Windows\System32\TextInputFramework.dll [293376]
O44 - LFC:[MD5.ADBCD98F1955608A74C8C6820D6CAE4D] - 09/08/2015 - 20:44:59 ---A- . (...) -- C:\Windows\DPINST.LOG [17992]
O44 - LFC:[MD5.74E77A9F3DBC1DFE0A3D0D642AB9E9B5] - 09/08/2015 - 20:43:53 ---A- . (...) -- C:\Windows\SysNative\ASGCoInstaller_x64.dll [65456]
O44 - LFC:[MD5.FC98CE6073D93E6038C7D6A28993B9EC] - 08/08/2015 - 07:40:23 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll [365056]
O44 - LFC:[MD5.FC98CE6073D93E6038C7D6A28993B9EC] - 08/08/2015 - 07:40:23 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [365056]
O44 - LFC:[MD5.CB136B267569A62EF63D798BC90ABD5A] - 05/08/2015 - 18:41:09 ---A- . (...) -- C:\Windows\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat [144]
O44 - LFC:[MD5.7C4C498CCB22E70DE85BB08B1887B92F] - 05/08/2015 - 17:11:37 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll [45568]
O44 - LFC:[MD5.7C4C498CCB22E70DE85BB08B1887B92F] - 05/08/2015 - 17:11:37 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [45568]
O44 - LFC:[MD5.CCA153D5EFD8900C0A2E599C2C9877A6] - 05/08/2015 - 17:11:34 ---A- . (...) -- C:\Windows\SysNative\EditionUpgradeManagerObj.dll [505344]
O44 - LFC:[MD5.1C84624A6FAF0336167E54A9D6FA4B05] - 05/08/2015 - 17:11:34 ---A- . (...) -- C:\Windows\SysNative\LicenseManagerApi.dll [32768]
O44 - LFC:[MD5.2DBCC1C6FBC78E2F89360C2B3FED27BE] - 05/08/2015 - 17:04:04 ---A- . (...) -- C:\Windows\setupact.log [21641]
O44 - LFC:[MD5.1B0FA163261D43D1D245514242AA67AA] - 05/08/2015 - 17:03:53 ---A- . (.ELAN Microelectronics Corp. - CoInstaller.) -- C:\Windows\SysNative\ETDCoInstaller.dll [81640]
O44 - LFC:[MD5.9F45771914360A925252A1B7226EC7EC] - 05/08/2015 - 16:59:05 ---A- . (...) -- C:\Windows\SysNative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat [451]
O44 - LFC:[MD5.6B39A55A4E3332E5DE9D1686C8888262] - 05/08/2015 - 16:54:40 ---A- . (...) -- C:\Windows\diagerr.xml [55248]
O44 - LFC:[MD5.6B39A55A4E3332E5DE9D1686C8888262] - 05/08/2015 - 16:54:40 ---A- . (...) -- C:\Windows\diagwrn.xml [55248]
O44 - LFC:[MD5.EB6DC548D5A4F2C32286EFF7AFF7FFD4] - 05/08/2015 - 16:51:55 ---A- . (...) -- C:\Windows\comsetup.log [7218]
O44 - LFC:[MD5.3637AB58F74F288DEF9BBB9FB8D02392] - 05/08/2015 - 16:51:21 ---A- . (...) -- C:\Windows\SysNative\emptyregdb.dat [23208]
O44 - LFC:[MD5.B5F02EC39B145E39B6C30542204911EB] - 05/08/2015 - 16:33:21 ---A- . (...) -- C:\Windows\DtcInstall.log [4362]
O44 - LFC:[MD5.E446AA183E6344CF84A98730098D3D46] - 05/08/2015 - 16:22:24 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\SysNative\OpenCL.DLL [64000]
O44 - LFC:[MD5.E446AA183E6344CF84A98730098D3D46] - 05/08/2015 - 16:22:24 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.DLL [64000]
O44 - LFC:[MD5.9AC2925125E34EE169173D212866F666] - 05/08/2015 - 16:21:51 ---A- . (.NVIDIA Corporation - NVIDIA Display Shell Extension.) -- C:\Windows\SysNative\nvshext.dll [62792]
O44 - LFC:[MD5.E8A524D10C99A39992148703CEC60185] - 05/08/2015 - 16:21:51 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.5.) -- C:\Windows\SysNative\nvsvc64.dll [3493008]
O44 - LFC:[MD5.1B44B5244EAF26BEC315AE84B0AFFC66] - 05/08/2015 - 16:21:51 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.5.) -- C:\Windows\SysNative\nvvsvc.exe [937616]
O44 - LFC:[MD5.083495DA4CFDFBB6AB3C44B05B7BA265] - 05/08/2015 - 16:21:51 ---A- . (.NVIDIA Corporation - NVIDIA French language resource library.) -- C:\Windows\SysNative\nv3dappshextr.dll [75080]
O44 - LFC:[MD5.F49929E1249B951D5CAEA622E6ED455C] - 05/08/2015 - 16:21:51 ---A- . (.NVIDIA Corporation - NVIDIA Shell Extensions.) -- C:\Windows\SysNative\nv3dappshext.dll [1059984]
O44 - LFC:[MD5.26836E4F6E6602D3418E49F7EA801A52] - 05/08/2015 - 16:21:50 ---A- . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\SysNative\nvcpl.dll [6873744]
O44 - LFC:[MD5.346D3B40EE85127A1FD664FD2A978B5B] - 05/08/2015 - 16:21:50 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.5.) -- C:\Windows\SysNative\nvsvcr.dll [2558792]
O44 - LFC:[MD5.8D02DE6F669FB1D581771150A03DE4B4] - 05/08/2015 - 16:21:50 ---A- . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\SysNative\nvmctray.dll [385168]
O44 - LFC:[MD5.8B62577DB6E9DA579F31B7A3C2A737CE] - 05/08/2015 - 16:18:33 ---A- . (...) -- C:\Windows\SysNative\NetSetupMig.log [33741]
O44 - LFC:[MD5.E3A45B55E3D5D714ADE7897CF383B035] - 05/08/2015 - 15:54:53 ---A- . (...) -- C:\Windows\WindowsUpdate (1).log [2055708]
O44 - LFC:[MD5.C397F52BD6B482E6E33B065267680A87] - 03/08/2015 - 03:18:01 ---A- . (.Microsoft Corp. - Microsoft PlayReady Client Framework Dll.) -- C:\Windows\SysNative\Windows.Media.Protection.PlayReady.dll [8613200]
O44 - LFC:[MD5.C397F52BD6B482E6E33B065267680A87] - 03/08/2015 - 03:18:01 ---A- . (.Microsoft Corp. - Microsoft PlayReady Client Framework Dll.) -- C:\Windows\System32\Windows.Media.Protection.PlayReady.dll [8613200]
O44 - LFC:[MD5.79431E9EEAE85C3E579D28265D2E3F21] - 03/08/2015 - 02:24:19 . (...) -- C:\Windows\System32\tileobjserver.dll [293376]]
O44 - LFC:[MD5.AD5EACF5ED458DD452C7CB4162C777D3] - 03/08/2015 - 02:14:13 ---A- . (...) -- C:\Windows\SysNative\facecredentialprovider.dll [247808]
O44 - LFC:[MD5.35B5BC9E3248A8D159E4D19F48479891] - 30/07/2015 - 07:05:18 ---A- . (...) -- C:\Windows\SysNative\CoreUIComponents.dll [2498808]
O44 - LFC:[MD5.35B5BC9E3248A8D159E4D19F48479891] - 30/07/2015 - 07:05:18 ---A- . (...) -- C:\Windows\System32\CoreUIComponents.dll [2498808]
O44 - LFC:[MD5.1A7D9B369F388B53263E7B55AAFFEB4C] - 30/07/2015 - 05:08:34 . (...) -- C:\Windows\System32\InstallAgent.exe [2446336]]
O44 - LFC:[MD5.711877C9F5CD75070D57431F272DCE78] - 30/07/2015 - 04:52:26 . (...) -- C:\Windows\System32\ACPBackgroundManagerPolicy.dll []
O44 - LFC:[MD5.240FF83DD79546B26F187FAB20F83864] - 30/07/2015 - 04:44:49 . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\AudioEndpointBuilder.dll [45568]]
O44 - LFC:[MD5.FAF8CE5C039B27FEDBAEEB72BC2AFFF2] - 28/07/2015 - 17:39:19 ---A- . (.Realtek Semiconductor Corp. - Realtek ASIO Control Panel.) -- C:\Windows\RTASIOCP.exe [196608]
O44 - LFC:[MD5.FF97BC35DA938684634492DA69DE1033] - 13/07/2015 - 17:28:00 ---A- . (...) -- C:\Windows\SysNative\nvcoproc.bin [5096627]
~ Scan Files in 00mn 28s
---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de lÉditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (...) -- C:\Windows\System32\livessp.dll
~ Scan Keys in 00mn 00s
---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Ahcache.sys . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\Ahcache.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Pilote du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote dextension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Ahcache.sys . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\Ahcache.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Pilote du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote dextension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51) (None)
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53) (None)
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "DSCAutomationHostEnabled"=2
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableRegistryTools"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRecentDocsHistory"=0
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2C49A2441EBB24C6ACFB524C1459115F] - 10/07/2015 - 11:59:38 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [107360]
~ Scan Drivers in 00mn 00s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.32 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
~ Scan Keys in 00mn 00s
---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [192000]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [192000]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [283136]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1335296]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [954368]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [954880]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service douverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [31232]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations dapplication.) -- C:\Windows\System32\appinfo.dll [93696]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151040]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [106496]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1008640]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [226304]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur dordinateurs.) -- C:\Windows\System32\browser.dll [133120]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [324608]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [371200]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [95744]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2093056]
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\System32\dcpsvc.dll [196096]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [167424]
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [186368]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique daccès distant.) -- C:\Windows\System32\rasauto.dll [106496]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions daccès à distance.) -- C:\Windows\System32\rasmans.dll [679936]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire dinterface dynamique.) -- C:\Windows\System32\mprdim.dll [497152]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification dévénements système (SENS).) -- C:\Windows\System32\sens.dll [72192]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de lapplication dassistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [452608]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [311808]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2235904]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [1168896]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [593920]
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [63488]
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1149440]
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1019392]
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [343040]
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [717312]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [27136]
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776]
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [918016]
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\System32\RDXService.dll [996352]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [359936]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire dinstallation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [237568]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [58368]
~ Scan Services in 00mn 01s
---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.4A93070098539B54FDA391D4D551C880] [SPRF][22/07/2009] (...) -- C:\ProgramData\SetStretch.exe [24576]
[MD5.7B4C9C9C749E7F55515A660E19C3606F] [SPRF][09/08/2015] (.Ellora Assets Corporation - Freemake Audio Converter Setup.) -- C:\Users\Bob\AppData\Local\Temp\FreemakeAudioConverterFull.exe [15300624]
[MD5.CD5F805EE8E53B4616D87DD41CE799E3] [SPRF][24/08/2015] (...) -- C:\Users\Bob\AppData\Local\Temp\~autoupdate.dat [184]
[MD5.909B9AFCB368F888E4813FAF1B52ABE1] [SPRF][24/08/2015] (...) -- C:\Users\Bob\AppData\Local\Temp\~gu3-ver.dat [107]
[MD5.380D17CAA33EAC6DF0E011C538D94CE7] [SPRF][24/08/2015] (...) -- C:\Users\Bob\AppData\Local\Temp\~upgrade.dat [1306]
[MD5.60193FB19F0441B7EE1110F4BE8290CF] [SPRF][27/12/2012] (...) -- C:\Users\Bob\AppData\Roaming\ezpinst.exe [93696]
[MD5.CA4A865B04D84129AC08664560AA7CCD] [SPRF][12/06/2014] (...) -- C:\Users\Bob\AppData\Roaming\my_intel.sys [21]
[MD5.899E41A057038CB5BE892FE428BDC576] [SPRF][27/12/2012] (.VSO Software - low level access layer for CD/DVD/BD devices.) -- C:\Users\Bob\AppData\Roaming\pcouffin.sys [82048]
[MD5.9537F46357BD0115570D0713663864F5] [SPRF][24/08/2015] (...) -- C:\Users\Bob\AppData\Roaming\sp_data.sys [401]
[MD5.506FAF7DC38D21C0F513E2B8D78345EA] [SPRF][14/06/2015] (...) -- C:\Users\Bob\Desktop\cc_20150614_082119.reg [20166]
[MD5.DCF2FFBEDF95A08A990B98FBFA83901C] [SPRF][24/06/2015] (...) -- C:\Users\Bob\Desktop\cc_20150624_082900.reg [2372]
[MD5.F551F640B249B20A6DE974720BB20044] [SPRF][06/07/2015] (...) -- C:\Users\Bob\Desktop\cc_20150706_080132.reg [2838]
[MD5.06554DA247773ADF22C98BE111EBADEC] [SPRF][24/08/2015] (...) -- C:\Users\Bob\Desktop\cc_20150824_142417.reg [217246]
~ Scan Files in 00mn 00s
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
O87 - FAEL: "{E3BC2233-BB3A-4865-A901-83C082278A84}" | In - Private - P17 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{12535915-77D6-4380-BB0C-B251A8D11043}" | In - Private - P6 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{6A1C4AFF-5A63-4C47-847B-32ED28137EC6}" | In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe
O87 - FAEL: "{40E04FF9-051C-4B36-88EC-4ABFBCF4BFAA}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe
O87 - FAEL: "{CA465055-C7E7-415E-8794-016197CE1761}" | In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe
O87 - FAEL: "{20FF9DCD-3819-46A8-9C59-EA2C04796530}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe
O87 - FAEL: "{01206EA0-7E27-4DDB-8EA9-42045492C237}" | In - None - P17 - TRUE | .(.Pas de propriétaire - DedicarzService.) -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe
O87 - FAEL: "{97E15C24-A32A-48D2-B47B-C7E85D7E9BCC}" | In - None - P6 - TRUE | .(.Pas de propriétaire - DedicarzService.) -- C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe
O87 - FAEL: "{E739197D-AD87-4458-AE63-0DAC6DDF7A76}" | In - None - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{401BD8A6-4FA3-4F96-8D7A-0E997D4AAF44}" | In - None - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{D83108B9-FE70-4D12-85A5-AED084B5749C}" | In - Public - P17 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{1F92FE43-8A76-4645-A76E-984993C6946A}" | In - Public - P6 - TRUE | .(.Orange SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "UDP Query User{586DDD04-B5EC-414C-9CA1-B5E75B96FF93}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe
O87 - FAEL: "TCP Query User{7CEC558C-3AAE-4C39-B2B0-DF0F663FA2A3}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe
O87 - FAEL: "{01423F67-D99B-4B4E-9578-0B11449C866D}" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{97127B63-407E-4C41-BF7C-086F02D922FA}" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "UDP Query User{15670B0F-4D59-455D-B77F-97E81B00CAD5}C:\program files (x86)\mediamonkey\mediamonkey.exe" | In - Public - P17 - TRUE | .(.Ventis Media Inc. - MediaMonkey.) -- C:\program files (x86)\mediamonkey\mediamonkey.exe
O87 - FAEL: "TCP Query User{C265E8AE-6CE5-419F-AAA5-C4203583D324}C:\program files (x86)\mediamonkey\mediamonkey.exe" | In - Public - P6 - TRUE | .(.Ventis Media Inc. - MediaMonkey.) -- C:\program files (x86)\mediamonkey\mediamonkey.exe
O87 - FAEL: "{392EDC86-ABA9-4AF8-91E4-AF6490060B82}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDirector.) -- C:\Program Files (x86)\CyberLink\PowerDirector\PDR8.exe
O87 - FAEL: "{EA8D6E17-80DD-4400-BF29-F06A6201531B}" | In - None - P6 - TRUE | .(.CyberLink Corp. - CyberLink PowerDVD Cinema 10 Main Program.) -- C:\Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
O87 - FAEL: "{61C0A0F0-D498-46BA-A0CE-EBC397BFA24A}" | In - None - P6 - TRUE | .(.CyberLink Corp. - ASUSDVD.) -- C:\Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD10.exe
O87 - FAEL: "{DEB771AB-04F9-4BDC-A3ED-1F405B78BB2E}" | In - Public - P6 - TRUE | .(.Ensemble Studios - Age of Empires 3.) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
O87 - FAEL: "{ED7CE07A-8872-4A8E-AAE2-62CFCC13F53E}" | In - Public - P17 - TRUE | .(.Ensemble Studios - Age of Empires 3.) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
O87 - FAEL: "{7AF35EB2-6085-4A01-963E-10660C71C1EC}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{81BA4C9B-BA03-4381-B374-AE0678C98AEA}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{0569AFFD-EA70-4F49-8AF0-738EDD38D0A0}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{AE3CDEE1-4B4A-468A-A1A6-A5A4DBB12A33}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{D4AD782D-AA89-4407-87E6-7B38E3BF0BA9}" | In - None - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{B9D14AA3-FC15-4C0B-A9D9-95D5E5800A6E}" | In - None - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{F342BBE5-36D1-4AB0-870E-888E9A599A14}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{5FAD051D-F5D7-4AD1-AF9D-A92908301559}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "TCP Query User{8A220231-D7EA-4436-80AC-0FE589E84C72}C:\program files (x86)\mediamonkey\mediamonkey.exe" | In - Private - P6 - TRUE | .(.Ventis Media Inc. - MediaMonkey.) -- C:\program files (x86)\mediamonkey\mediamonkey.exe
O87 - FAEL: "UDP Query User{25C9AC4D-BAE1-4CEE-860A-D728ADF5DD3A}C:\program files (x86)\mediamonkey\mediamonkey.exe" | In - Private - P17 - TRUE | .(.Ventis Media Inc. - MediaMonkey.) -- C:\program files (x86)\mediamonkey\mediamonkey.exe
~ Scan Firewall in 00mn 01s
---\\ Product Upgrade Codes (O90)
O90 - PUC: "00004159070000000000000000F01FEC" . (.Microsoft Office.) -- C:\windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
O90 - PUC: "08B1A79DF131296459346E2559D6B899" . (.ASUS Instant Key.) -- C:\Windows\Installer\{D97A1B80-131F-4692-9543-E652956D8B99}\_853F67D554F05449430E7E.exe
O90 - PUC: "098990BCF5D15D11E99A0005AB3E711E" . (.PowerDirector.) -- C:\Windows\Installer\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\ARPPRODUCTICON.exe
O90 - PUC: "0ED9D238CFA898648991D4BBEDDBE3F4" . (.Microsoft Games for Windows - LIVE Redistributable.) -- C:\Windows\Installer\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}\GameForWindowsLiveRedist.exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "1E4D8827050818B49BCE8F211DA76D39" . (.Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed.) -- C:\Windows\Installer\{7288D4E1-8050-4B81-B9EC-F812D17AD693}\IntelBluetoothICO
O90 - PUC: "21F1DBD139DE0C947ACC65BCED841885" . (.ASUS LifeFrame3.) -- C:\Windows\Installer\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}\_853F67D554F05449430E7E.exe
O90 - PUC: "22AA45870F2A92F42A9E0D5C2A6B587E" . (.Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology.) -- C:\Windows\Installer\{7854AA22-A2F0-4F29-A2E9-D0C5A2B685E7}\IntelBluetoothICO
O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico
O90 - PUC: "3342ABDE019027C4C8B5F8DEEAE31FE8" . (.Intel(R) WiDi.) -- C:\Windows\Installer\{EDBA2433-0910-4C72-8C5B-8FEDAE3EF18E}\ARPPRODUCTICON.exe
O90 - PUC: "381B8F07BE994034AB5380E0D2FF2D3A" . (.Age of Empires III.) -- C:\Windows\Installer\{70F8B183-99EB-4304-BA35-080E2DFFD2A3}\ARPPRODUCTICON.exe
O90 - PUC: "42C6FBF1DF1C10144AB2C065F4E9E897" . (.PowerStarter.) -- C:\Windows\Installer\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\ARPPRODUCTICON.exe
O90 - PUC: "47E4DFEFEE586AB4DA200E9FB93C5FE1" . (.calibre.) -- C:\Windows\Installer\{FEFD4E74-85EE-4BA6-AD02-E0F99BC3F51E}\main_icon
O90 - PUC: "50FA96906FF400C4496034952983EDD0" . (.ASUS Splendid Video Enhancement Technology.) -- C:\Windows\Installer\{0969AF05-4FF6-4C00-9406-43599238DE0D}\_853F67D554F05449430E7E.exe
O90 - PUC: "5E3E958AF26CAFB4FAD1B2590E1366FA" . (.ASUS USB Charger Plus.) -- C:\Windows\Installer\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}\_853F67D554F05449430E7E.exe
O90 - PUC: "66D2718596F25124A9CEDE1869207363" . (.ASUS Tutor.) -- C:\windows\Installer\{58172D66-2F69-4215-9AEC-ED8196023736}\_853F67D554F05449430E7E.exe
O90 - PUC: "68AB67CA408033019195008142412751" . (.Adobe Refresh Manager.) -- C:\WINDOWS\Installer\{AC76BA86-0804-1033-1959-001824147215}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744CAF070E41400" . (.Adobe Acrobat Reader DC - Français.) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico
O90 - PUC: "6A6823D4BA6FA894284A4E0F0425F9D3" . (.ASUS Smart Gesture.) -- C:\WINDOWS\Installer\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}\_853F67D554F05449430E7E.exe
O90 - PUC: "7CAE4331FE6D77147808509C3658C33D" . (.Intel(R) PRO/Wireless Driver.) -- C:\Windows\Installer\{1334EAC7-D6EF-4177-8780-05C963853CD3}\ARPPRODUCTICON.exe
O90 - PUC: "8489373E92353E84D882B5DBE6B83E48" . (.MediaEspresso.) -- C:\Windows\Installer\{E3739848-5329-48E3-8D28-5BBD6E8BE384}\ARPPRODUCTICON.exe
O90 - PUC: "A58BCE98339DAEC41961C5CBC9E29DB5" . (.ASUS Instant Connect.) -- C:\Windows\Installer\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}\_853F67D554F05449430E7E.exe
O90 - PUC: "AD84F16DB726E4043951236A151BB846" . (.Intel® PROSet/Wireless WiFi Software.) -- C:\Windows\Installer\{D61F48DA-627B-404E-9315-32A651B18B64}\ARPPRODUCTICON.exe
O90 - PUC: "B316307EBADBE3346AA6ED20363E3DD5" . (.Windows Live Messenger.) -- C:\WINDOWS\Installer\{E703613B-BDAB-433E-A66A-DE0263E3D35D}\MsblIco.Exe
O90 - PUC: "B476F94747628E7478C965620AB6A219" . (.ASUS InstantOn.) -- C:\Windows\Installer\{749F674B-2674-47E8-879C-5626A06B2A91}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "B96BED57C6B44D110BEC00AA00CB2C81" . (.Microsoft Works 6.0.) -- C:\Windows\Installer\{75DEB69B-4B6C-11D4-B0CE-00AA00BCC218}\Win2Kico.ico
O90 - PUC: "C7030BC4E565144468EBD02F4EBF28C8" . (.Microsoft Games for Windows Marketplace.) -- C:\Windows\Installer\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}\GameForWindowsLiveDash.exe
O90 - PUC: "D38BA498FA9A45E4FB3F7A62A2A0C631" . (.Motorola Device Software Update.) -- C:\Windows\Installer\{894AB83D-A9AF-4E54-BFF3-A7262A0A6C13}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "D40790EA150952C49B04778F980F9CF3" . (.OVTScanner_Vista64.) -- C:\Windows\Installer\{AE09704D-9051-4C25-B940-77F889F0C93F}\ARPPRODUCTICON.exe
O90 - PUC: "DE532CED4A8571542A874CE1D8EABAB3" . (.PowerDVD.) -- C:\Windows\Installer\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\ARPPRODUCTICON.exe
O90 - PUC: "E1B4CC96BDA07E84385D4BD58ADC3102" . (.Alcor Micro USB Card Reader.) -- C:\Windows\Installer\{69CC4B1E-0ADB-48E7-83D5-B45DA8CD1320}\ARPPRODUCTICON.exe
O90 - PUC: "E261E417F4DCB1F43820F7159704C952" . (.Windows Live Writer.) -- C:\WINDOWS\Installer\{714E162E-CD4F-4F1B-8302-7F5179409C25}\ApplicationIcon.ico
O90 - PUC: "E339C5BAD7C503D43B41C9384AB949EB" . (.ATK Package.) -- C:\WINDOWS\Installer\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "F2A6E95710F1FE540A4C221F5BC69B57" . (.Motorola Mobile Drivers Installation 6.3.0.) -- C:\Windows\Installer\{759E6A2F-1F01-45EF-A0C4-22F1B56CB975}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "FB9326B958E40954D827153ED01B9AAA" . (.ASUS Power4Gear Hybrid.) -- C:\Windows\Installer\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}\_853F67D554F05449430E7E.exe
~ Scan Files in 00mn 00s
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 07/07/2015 82128 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Demand 12/08/2015 269000 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 26/03/2014 115512 | (ASLDRService) . (.ASUSTek Computer Inc..) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
SR - | Auto 13/04/2012 277120 | (ASUS InstantOn) . (.ASUS.) - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
SR - | Auto 21/11/2011 96896 | (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 23/05/2012 243728 | (CLKMSVC10_38F51D56) . (.CyberLink.) - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
SR - | Demand 11/07/2015 281488 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SR - | Auto 1970544 | (Dedicarz Service) . (...) - C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe
SR - | Auto 05/08/2015 147688 | (ETDService) . (.ELAN Microelectronics Corp..) - C:\Program Files\Elantech\ETDService.exe
SR - | Demand 04/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SR - | Auto 11/07/2015 319888 | (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe
SR - | Auto 20/04/2012 635104 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 25/06/2012 166720 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 17/07/2012 277824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 18/06/2015 1133880 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
SR - | Demand 15/11/2013 137528 | (Motorola Device Manager) . (.Motorola Mobility LLC.) - C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
SR - | Auto 18/08/2015 149160 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 13/07/2015 937616 | (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe
SR - | Auto 10/12/2013 1364256 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 08/06/2015 730648 | (Orange update Core Service) . (.Orange SA.) - C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
SR - | Auto 02/09/2011 65657 | (PST Service) . (.Motorola.) - C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
SR - | Auto 247152 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
SR - | Auto 17/07/2012 365376 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Demand 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Demand 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Demand 10/07/2015 39856 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 03s
End of the scan (1378 lines in 04mn 11s)(0)